AIO Build

Author: jackgkafaty

.github/workflows/CodeQL_AIO_Native_Larger_Runner.yml

@@ -0,0 +1,149 @@
+name: CodeQL_AIO_Native_Larger_Runner_Example.yml 
+on:
+  push:
+    branches: [ main ]
+
+  pull_request:
+    branches: [main]
+
+jobs:
+  Example01_JavaScript:
+    runs-on: GitHub_Jack_PowerRunner
+    defaults:
+      run:
+        working-directory: /home/runner/work/CodeQL_containerizedApp/CodeQL_containerizedApp/Example01_JavaScript/
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language: [javascript]
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v3
+
+     # Initializes the CodeQL tools for scanning.
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v2
+        with:
+          languages:
+            ${{ matrix.language }}
+
+      - name: Autobuild
+        uses: github/codeql-action/autobuild@v2
+      
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v2     
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v2
+
+  Example02_Java:
+    needs: Example01_JavaScript
+    runs-on: GitHub_Jack_PowerRunner
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language: [Java]
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v3
+
+      - name: Install dependencies
+        working-directory: /home/runner/work/CodeQL_containerizedApp/CodeQL_containerizedApp/Example02_Java/
+        run: |
+          sudo apt-get install build-essential maven default-jdk cowsay netcat -y && \
+          sudo apt-get install -y openjdk-8-jdk && \
+          sudo update-alternatives --config javac
+          
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v2
+        with:
+          languages: ${{ matrix.language }}
+
+      - name: Build with Maven
+        working-directory: /home/runner/work/CodeQL_containerizedApp/CodeQL_containerizedApp/Example02_Java/
+        run: |
+          mvn -B package --file pom.xml
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v2
+
+  Example03_Csharp:
+    needs: [Example01_JavaScript, Example02_Java]
+    runs-on: windows-2022-16core
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language: [csharp]
+
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v3
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v2
+        with:
+          languages: ${{ matrix.language }}
+
+      - name: Setup .NET
+        uses: actions/setup-dotnet@v3
+        with:
+          dotnet-version: 7.0.x
+
+      - name: Build with dotnet
+        working-directory: D:\a\CodeQL_containerizedApp\CodeQL_containerizedApp\Example03_Csharp\WebGoatCore\
+        run: dotnet build WebGoatCore.csproj
+
+      # - name: Autobuild
+      #   uses: github/codeql-action/autobuild@v2
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v2
+        
+  Example04_Python:
+    needs: [Example01_JavaScript, Example02_Java, Example03_Csharp]
+    runs-on: GitHub_Jack_PowerRunner
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language: [ 'python' ]
+    
+    steps:   
+    
+      - name: Checkout repository
+        uses: actions/checkout@v3   
+    
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v2
+        with:
+           languages: ${{ matrix.language }}
+             
+      - name: Autobuild
+        uses: github/codeql-action/autobuild@v2
+    
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v2
+    

.github/workflows/CodeQL_AIO_Native_Runner_Example.yml

@@ -43,6 +43,7 @@ jobs:
         uses: github/codeql-action/analyze@v2
 
   Example02_Java:
+    needs: Example01_JavaScript
     runs-on: Ubuntu-latest
     permissions:
       actions: read
@@ -65,7 +66,6 @@ jobs:
           sudo apt-get install -y openjdk-8-jdk && \
           sudo update-alternatives --config javac
           
-
       - name: Initialize CodeQL
         uses: github/codeql-action/init@v2
         with:
@@ -75,11 +75,11 @@ jobs:
         working-directory: /home/runner/work/CodeQL_containerizedApp/CodeQL_containerizedApp/Example02_Java/
         run: |
           mvn -B package --file pom.xml
-
       - name: Perform CodeQL Analysis
         uses: github/codeql-action/analyze@v2
 
   Example03_Csharp:
+    needs: [Example01_JavaScript, Example02_Java]
     runs-on: windows-latest
     permissions:
       actions: read
@@ -117,6 +117,7 @@ jobs:
         uses: github/codeql-action/analyze@v2
 
   Example04_Python:
+    needs: [Example01_JavaScript, Example02_Java, Example03_Csharp]
     runs-on: ubuntu-latest
     permissions:
       actions: read
@@ -142,5 +143,4 @@ jobs:
         uses: github/codeql-action/autobuild@v2
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v2
-    
+        uses: github/codeql-action/analyze@v2

README.md

@@ -91,7 +91,9 @@ When your workflow runs, GitHub Actions will start a container using the specifi
 |Example01_C#         | C#                   | 7 Minutes and 47 Seconds   |
 |Example01_Python     | Python               | 4 Minutes and 39 Seconds   | 
 
-> #### CodeQL code scanning for containerized applications using [GitHub Larger Runners]([https://docs.github.com/en/actions/using-github-hosted-runners/about-github-hosted-runners](https://docs.github.com/en/enterprise-cloud@latest/actions/using-github-hosted-runners/about-larger-runners))
+***
+
+> #### CodeQL code scanning for containerized applications using [GitHub Larger Runners](https://docs.github.com/en/enterprise-cloud@latest/actions/using-github-hosted-runners/about-larger-runners)
 
 | Example             | Programming Language| Scan completion Time |
 |---------------------|-------------------- |---------------------- |                
@@ -100,11 +102,17 @@ When your workflow runs, GitHub Actions will start a container using the specifi
 |Example01_C#         | C#                  | 3 Minutes and 59 Seconds   |
 |Example01_Python     | Python              | 2 Minutes and 24 Seconds   | 
 
- ##### Larger Runner Specs  and  Resources Assigned to the container for each example:
-| CPU Cores | RAM | Storage | Base OS     |   | CPU | RAM              | Storage         | Base OS                                    |     
-|-----------|-----|---------|---------    |---|-----|------------------|-----------------|------------------------------------------- | 
-|8 cores    |32GB  |300 SSD  |Ubuntu 22.04|   |   5  |Container Default|Container Default|Review example workflows for container image |
+ ##### Larger Runner Specs:
+| CPU Cores | RAM | Storage | Base OS     |
+|-----------|-----|---------|---------    |
+|8 cores    |32GB  |300 SSD  |Ubuntu 22.04| 
+
+##### Resources Assigned to the container for each example:
+| CPU | RAM               | Storage         | Base OS                                 | 
+|-----|------------------|-----------------|------------------------------------------| 
+|5  |Container Default|Container Default|Review example workflows for container image |
 
+***
 
 > #### CodeQL code scanning for containerized applications - Coverting the application to run natively within a GitHub default Runner rather than within the container.