Use our container for the CodeQL job

vmcj · vmcj · commit db8575f5aa4d · 2024-06-17T10:22:16.000Z
Also upgraded to the latest versions for the actions and did some small
cleanup to make the code more readable.

The $USER is now set close to where we start the container as we use
this in code and GHA didn't set this.

Our container already has the packages so we don't need to run the apt
steps anymore (for the speedup).
Run CI with our container for speedup
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -12,12 +12,14 @@ on:
 
 jobs:
   analyze:
-    # We can not run with our gitlab container
-    # CodeQL has missing .so files otherwise
+    container:
+      image: domjudge/gitlabci:24.04
+      options: --user domjudge
     name: Analyze
     runs-on: ubuntu-latest
     env:
       COMPILED: "cpp"
+      USER: "domjudge"
     permissions:
       actions: read
       contents: read
@@ -33,27 +35,13 @@ jobs:
       uses: actions/checkout@v4
 
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@v2
+      uses: github/codeql-action/init@v3
       with:
         languages: ${{ matrix.language }}
 
-    - name: Install required tools
-      if: ${{ contains(env.COMPILED, matrix.language) }}
-      run: |
-        sudo apt update
-        sudo apt install -y acl zip unzip apache2 composer php php-fpm php-gd \
-                            php-cli php-intl php-mbstring php-mysql php-curl php-json \
-                            php-xml php-zip ntp make sudo debootstrap \
-                            libcgroup-dev lsof php-cli php-curl php-json php-xml \
-                            php-zip procps gcc g++ default-jre-headless \
-                            default-jdk-headless ghc fp-compiler autoconf automake bats \
-                            python3-sphinx python3-sphinx-rtd-theme rst2pdf fontconfig \
-                            python3-yaml latexmk
-
     - name: Install composer files
       if: ${{ contains(env.COMPILED, matrix.language) }}
-      run: |
-        composer install --no-scripts
+      run: composer install --no-scripts
 
     - name: Configure Makefile
       if: ${{ contains(env.COMPILED, matrix.language) }}
@@ -88,4 +76,4 @@ jobs:
       run: sudo chown -R ${USER} ./installdir
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v2
+      uses: github/codeql-action/analyze@v3
