Use our container for the CodeQL job

Also upgraded to the latest versions for the actions and did some small cleanup to make the code more readable. The $USER is now set close to where we start the container as we use this in code and GHA didn't set this. Our container already has the packages so we don't need to run the apt steps anymore (for the speedup). Run CI with our container for speedup
DOMjudge · Jun 17, 2024 · db8575f · db8575f
1 parent 05f5924
commit db8575f
Showing 1 changed file with 7 additions and 19 deletions.
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -12,12 +12,14 @@ on:
 
 jobs:
   analyze:
-    # We can not run with our gitlab container
-    # CodeQL has missing .so files otherwise
+    container:
+      image: domjudge/gitlabci:24.04
+      options: --user domjudge
     name: Analyze
     runs-on: ubuntu-latest
     env:
       COMPILED: "cpp"
+      USER: "domjudge"
     permissions:
       actions: read
       contents: read
@@ -33,27 +35,13 @@ jobs:
       uses: actions/checkout@v4
 
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@v2
+      uses: github/codeql-action/init@v3
       with:
         languages: ${{ matrix.language }}
 
-    - name: Install required tools
-      if: ${{ contains(env.COMPILED, matrix.language) }}
-      run: |
-        sudo apt update
-        sudo apt install -y acl zip unzip apache2 composer php php-fpm php-gd \
-                            php-cli php-intl php-mbstring php-mysql php-curl php-json \
-                            php-xml php-zip ntp make sudo debootstrap \
-                            libcgroup-dev lsof php-cli php-curl php-json php-xml \
-                            php-zip procps gcc g++ default-jre-headless \
-                            default-jdk-headless ghc fp-compiler autoconf automake bats \
-                            python3-sphinx python3-sphinx-rtd-theme rst2pdf fontconfig \
-                            python3-yaml latexmk
-
     - name: Install composer files
       if: ${{ contains(env.COMPILED, matrix.language) }}
-      run: |
-        composer install --no-scripts
+      run: composer install --no-scripts
 
     - name: Configure Makefile
       if: ${{ contains(env.COMPILED, matrix.language) }}
@@ -88,4 +76,4 @@ jobs:
       run: sudo chown -R ${USER} ./installdir
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v2
+      uses: github/codeql-action/analyze@v3