Fix Trace Context extraction from Lambda Context object by bypassing … #639
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # For most projects, this workflow file will not need changing; you simply need | |
| # to commit it to your repository. | |
| # | |
| # You may wish to alter this file to override the set of languages analyzed, | |
| # or to provide custom queries or build logic. | |
| # | |
| # ******** NOTE ******** | |
| # We have attempted to detect the languages in your repository. Please check | |
| # the `language` matrix defined below to confirm you have the correct set of | |
| # supported CodeQL languages. | |
| # | |
| name: "CodeQL" | |
| on: | |
| push: | |
| branches: [ main ] | |
| jobs: | |
| analyze: | |
| # This repository only have Java and Rust code. Rust is not supported currently. | |
| name: Analyze | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 #5.0.0 | |
| # Initializes the CodeQL tools for scanning. | |
| - name: Initialize CodeQL | |
| uses: github/codeql-action/init@16df4fbc19aea13d921737861d6c622bf3cefe23 #v3.30.3 | |
| with: | |
| languages: java | |
| - uses: actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165 # v5.0.0 | |
| with: | |
| java-version-file: .java-version | |
| distribution: temurin | |
| - name: Cache local Maven repository | |
| uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 #v4.2.4 | |
| with: | |
| path: | | |
| ~/.m2/repository/io/opentelemetry/ | |
| key: ${{ runner.os }}-maven-local-${{ hashFiles('.github/patches/opentelemetry-java*.patch') }} | |
| - name: Publish patched dependencies to maven local | |
| uses: ./.github/actions/patch-dependencies | |
| if: steps.cache-local-maven-repo.outputs.cache-hit != 'true' | |
| with: | |
| gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }} | |
| gpg_password: ${{ secrets.GPG_PASSPHRASE }} | |
| - uses: gradle/actions/wrapper-validation@ed408507eac070d1f99cc633dbcf757c94c7933a # v4.4.3 | |
| - name: Manually build to avoid autobuild failures | |
| uses: gradle/actions/setup-gradle@d9c87d481d55275bb5441eef3fe0e46805f9ef70 #v3.5.0 | |
| with: | |
| arguments: build | |
| - name: Perform CodeQL Analysis | |
| uses: github/codeql-action/analyze@16df4fbc19aea13d921737861d6c622bf3cefe23 #v3.30.3 | |
| all-codeql-checks-pass: | |
| runs-on: ubuntu-latest | |
| needs: [analyze] | |
| if: always() | |
| steps: | |
| - name: Checkout to get workflow file | |
| uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 #5.0.0 | |
| - name: Check all jobs succeeded and none missing | |
| run: | | |
| # Check if all needed jobs succeeded | |
| results='${{ toJSON(needs) }}' | |
| if echo "$results" | jq -r '.[] | .result' | grep -v success; then | |
| echo "Some jobs failed" | |
| exit 1 | |
| fi | |
| # Extract all job names from workflow (excluding this gate job) | |
| all_jobs=$(yq eval '.jobs | keys | .[]' .github/workflows/codeql.yml | grep -v "all-codeql-checks-pass" | sort) | |
| # Extract job names from needs array | |
| needed_jobs='${{ toJSON(needs) }}' | |
| needs_list=$(echo "$needed_jobs" | jq -r 'keys[]' | sort) | |
| # Check if any jobs are missing from needs | |
| missing_jobs=$(comm -23 <(echo "$all_jobs") <(echo "$needs_list")) | |
| if [ -n "$missing_jobs" ]; then | |
| echo "ERROR: Jobs missing from needs array in all-codeql-checks-pass:" | |
| echo "$missing_jobs" | |
| echo "Please add these jobs to the needs array of all-codeql-checks-pass" | |
| exit 1 | |
| fi | |
| echo "All CodeQL checks passed and no jobs missing from gate!" |