|
|
@@ -1,45 +1,43 @@
|
|
|
-name: "Code scanning - action"
|
|
|
+# ASP.NET
|
|
|
+# Build and test ASP.NET projects.
|
|
|
+# Add steps that publish symbols, save build artifacts, deploy, and more:
|
|
|
+# https://docs.microsoft.com/azure/devops/pipelines/apps/aspnet/build-aspnet-4
|
|
|
|
|
|
trigger:
|
|
|
- master
|
|
|
|
|
|
-jobs:
|
|
|
- CodeQL-Build:
|
|
|
+pool:
|
|
|
+ vmImage: 'VS2019-Win2019'
|
|
|
|
|
|
- runs-on: windows-latest
|
|
|
+variables:
|
|
|
+ solution: '**/*.sln'
|
|
|
+ buildPlatform: 'Any CPU'
|
|
|
+ buildConfiguration: 'Release'
|
|
|
|
|
|
- permissions:
|
|
|
- contents: read
|
|
|
- security-events: write
|
|
|
- pull-requests: read
|
|
|
+steps:
|
|
|
+- task: NuGetToolInstaller@0
|
|
|
|
|
|
- steps:
|
|
|
- - name: Setup dotnet
|
|
|
- uses: actions/setup-dotnet@v3
|
|
|
- with:
|
|
|
- dotnet-version: 4.7.1
|
|
|
+- task: NuGetCommand@2
|
|
|
+ inputs:
|
|
|
+ restoreSolution: '$(solution)'
|
|
|
|
|
|
-
|
|
|
+- task: VSBuild@1
|
|
|
+ inputs:
|
|
|
+ solution: '$(solution)'
|
|
|
+ msbuildArgs: '/p:DeployOnBuild=true /p:WebPublishMethod=Package /p:PackageAsSingleFile=true /p:SkipInvalidConfigurations=true /p:PackageLocation="$(build.artifactStagingDirectory)"'
|
|
|
+ platform: '$(buildPlatform)'
|
|
|
+ configuration: '$(buildConfiguration)'
|
|
|
|
|
|
- # Initializes the CodeQL tools for scanning.
|
|
|
- - name: Initialize CodeQL
|
|
|
- uses: AdvancedSecurity-Codeql-Init@1
|
|
|
- # Override language selection by uncommenting this and choosing your languages
|
|
|
- inputs:
|
|
|
- languages: 'csharp'
|
|
|
+- task: AdvancedSecurity-Codeql-Init@1
|
|
|
+ inputs:
|
|
|
+ languages: 'csharp'
|
|
|
|
|
|
- # Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
|
|
|
- # If this step fails, then you should remove it and run the build manually (see below)
|
|
|
- name: Autobuild
|
|
|
- uses: AdvancedSecurity-Codeql-Autobuild@1
|
|
|
+- task: AdvancedSecurity-Codeql-Autobuild@1
|
|
|
+- script: echo Hello, world!
|
|
|
+ displayName: 'Run a one-line script'
|
|
|
|
|
|
- # ℹ️ Command-line programs to run using the OS shell.
|
|
|
- # 📚 https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
|
|
|
|
|
|
- # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
|
|
|
- # and modify them (or add more) to build your code if your project
|
|
|
- # uses a compiled language
|
|
|
-
|
|
|
-
|
|
|
- task: AdvancedSecurity-Dependency-Scanning@1
|
|
|
-- task: AdvancedSecurity-Codeql-Analyze@1
|
|
|
+- task: AdvancedSecurity-Codeql-Analyze@1
|
|
|
+
|
|
|
+
|
Jessica