mirror of
https://github.com/YosysHQ/yosys
synced 2025-08-10 21:20:53 +00:00
CI: Fixes from zizmor
> A static analysis tool for Github Actions https://github.com/woodruffw/zizmor Mostly means adding `persist-credentials: false` to checkouts and replacing `{{ env.VARNAME }}` with shell substitution.
This commit is contained in:
Krystine Sherwin
parent
e32e199ca8
commit
e609a59325
10 changed files with 31 additions and 13 deletions
14
.github/workflows/test-build.yml
vendored
14
.github/workflows/test-build.yml
vendored
|
|
@ -46,6 +46,7 @@ jobs:
|
|||
uses: actions/checkout@v4
|
||||
with:
|
||||
submodules: true
|
||||
persist-credentials: false
|
||||
|
||||
- name: Setup environment
|
||||
uses: ./.github/actions/setup-build-env
|
||||
|
|
@ -89,6 +90,8 @@ jobs:
|
|||
steps:
|
||||
- name: Checkout Yosys
|
||||
uses: actions/checkout@v4
|
||||
with:
|
||||
persist-credentials: false
|
||||
|
||||
- name: Setup environment
|
||||
uses: ./.github/actions/setup-build-env
|
||||
|
|
@ -115,7 +118,7 @@ jobs:
|
|||
uses: actions/cache@v4
|
||||
with:
|
||||
path: .local/
|
||||
key: ${{ matrix.os }}-${{ env.IVERILOG_GIT }}
|
||||
key: ${{ matrix.os }}-${IVERILOG_GIT}
|
||||
|
||||
- name: Build iverilog
|
||||
if: steps.cache-iverilog.outputs.cache-hit != 'true'
|
||||
|
|
@ -167,6 +170,8 @@ jobs:
|
|||
steps:
|
||||
- name: Checkout Yosys
|
||||
uses: actions/checkout@v4
|
||||
with:
|
||||
persist-credentials: false
|
||||
|
||||
- name: Setup environment
|
||||
uses: ./.github/actions/setup-build-env
|
||||
|
|
@ -188,7 +193,7 @@ jobs:
|
|||
- name: Run tests
|
||||
shell: bash
|
||||
run: |
|
||||
make -C docs test -j${{ env.procs }}
|
||||
make -C docs test -j$procs
|
||||
|
||||
test-docs-build:
|
||||
name: Try build docs
|
||||
|
|
@ -204,6 +209,7 @@ jobs:
|
|||
uses: actions/checkout@v4
|
||||
with:
|
||||
submodules: true
|
||||
persist-credentials: false
|
||||
|
||||
- name: Runtime environment
|
||||
run: |
|
||||
|
|
@ -213,7 +219,7 @@ jobs:
|
|||
run: |
|
||||
make config-clang
|
||||
echo "ENABLE_CCACHE := 1" >> Makefile.conf
|
||||
make -j${{ env.procs }}
|
||||
make -j$procs
|
||||
|
||||
- name: Install doc prereqs
|
||||
shell: bash
|
||||
|
|
@ -223,7 +229,7 @@ jobs:
|
|||
- name: Build docs
|
||||
shell: bash
|
||||
run: |
|
||||
make docs DOC_TARGET=${{ matrix.docs-target }} -j${{ env.procs }}
|
||||
make docs DOC_TARGET=${{ matrix.docs-target }} -j$procs
|
||||
|
||||
- name: Store docs build artifact
|
||||
uses: actions/upload-artifact@v4
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue