Add sonarQube and/or coverity code scanner to whonix github

nurmagoz · July 1, 2022, 2:12am

Free software version of static scanner widely known/used:

Note: free version can be downloaded locally

Or we can be integrated it into github and/or gitlab side as well but a request need to be filled:

Coverity is static code scanner which can be integrated in github:

Note: the integration free of cost, but the software is proprietary (but since its only added on github side i think its safe?)

https://scan.coverity.com/

Inspiration:

github.com/GrapheneOS/hardened_malloc

Make use of coverity

opened 07:42PM - 30 Jan 22 UTC

jvoisin

Because hardened_malloc is written in C (scary!) it would be nice to make use of… [coverity]( https://scan.coverity.com/ ), if only to be on the safe side™. I would gladly do it, but because of the way github actions are working with secrets, and given how crappy coverity's ACL/interface is, @thestinger should do it. Examples of integrations can be found [here]( https://github.com/jvoisin/snuffleupagus/blob/master/.github/workflows/coverity.yml ) or [here]( https://gitlab.com/OpenMW/openmw/-/blob/master/.gitlab-ci.yml#L65-90 ). Of course, I'm happy to help :)

https://scan.coverity.com/projects/i2p

nurmagoz · December 3, 2023, 10:18am