From edef111ce758e77530bbd6bd400e979751f24546 Mon Sep 17 00:00:00 2001
From: GeWuYou <95328647+GeWuYou@users.noreply.github.com>
Date: Mon, 9 Feb 2026 11:27:10 +0800
Subject: [PATCH] =?UTF-8?q?perf(ci):=20=E4=BC=98=E5=8C=96CI=E5=B7=A5?=
 =?UTF-8?q?=E4=BD=9C=E6=B5=81=E9=85=8D=E7=BD=AE=E4=BB=A5=E6=8F=90=E5=8D=87?=
 =?UTF-8?q?=E6=9E=84=E5=BB=BA=E6=80=A7=E8=83=BD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- 为MegaLinter添加缓存机制以加速代码质量检查
- 为TruffleHog添加缓存机制以提升安全扫描效率
- 扩展NuGet包缓存路径并包含更多依赖目录
- 添加.NET工具缓存以减少重复下载时间
- 将CodeQL构建模式从自动改为手动控制
- 更新.NET版本配置仅保留8.0.x版本支持
- 调整仓库检出深度设置以优化拉取速度
---
 .github/workflows/ci.yml     | 29 +++++++++++++++++++++++++++--
 .github/workflows/codeql.yml | 11 +++++++----
 2 files changed, 34 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 71a8edf..9598599 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -23,6 +23,16 @@ jobs:
         uses: actions/checkout@v6
         with:
           fetch-depth: 0
+      # 缓存MegaLinter
+      - name: Cache MegaLinter
+        uses: actions/cache@v5
+        with:
+          path: ~/.cache/megalinter
+          key: ${{ runner.os }}-megalinter-v9
+          restore-keys: |
+            ${{ runner.os }}-megalinter-
+      
+      
       # MegaLinter扫描步骤
       # 执行代码质量检查和安全扫描，生成SARIF格式报告
       - name: MegaLinter
@@ -36,6 +46,12 @@ jobs:
         uses: github/codeql-action/upload-sarif@v4
         with:
           sarif_file: megalinter-reports/sarif
+      # 缓存TruffleHog
+      - name: Cache TruffleHog
+        uses: actions/cache@v5
+        with:
+          path: ~/.cache/trufflehog
+          key: ${{ runner.os }}-trufflehog
 
       # TruffleHog OSS 扫描步骤
       # 使用 TruffleHog 工具扫描代码库中的敏感信息泄露，如API密钥、密码等
@@ -70,8 +86,17 @@ jobs:
       - name: Cache NuGet packages
         uses: actions/cache@v5
         with:
-          path: ~/.nuget/packages
-          key: ${{ runner.os }}-nuget-${{ hashFiles('**/*.csproj') }}
+          path: |
+            ~/.nuget/packages
+            ~/.local/share/NuGet
+          key: ${{ runner.os }}-nuget-${{ hashFiles('**/*.csproj', '**/nuget.config') }}
+      
+      # 配置.NET本地工具缓存以加速后续构建
+      - name: Cache dotnet tools
+        uses: actions/cache@v5
+        with:
+          path: ~/.dotnet/tools
+          key: ${{ runner.os }}-dotnet-tools-${{ hashFiles('.config/dotnet-tools.json') }}
 
       # 执行NuGet包恢复操作
       - name: Restore
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 971ed2f..4107d5b 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -28,16 +28,16 @@ jobs:
     steps:
       - name: Checkout repository
         uses: actions/checkout@v6
+        with:
+          fetch-depth: 0
 
       # 设置.NET运行时环境
-      # 配置.NET 8.0.x、9.0.x和10.0.x版本支持
+      # 配置.NET 8.0.x版本支持
       - name: Setup .NET
         uses: actions/setup-dotnet@v5
         with:
           dotnet-version: |
             8.0.x
-            9.0.x
-            10.0.x
 
       # 初始化CodeQL分析环境
       # 配置C#语言支持并启用自动构建模式
@@ -45,7 +45,10 @@ jobs:
         uses: github/codeql-action/init@v4
         with:
           languages: csharp
-          build-mode: autobuild
+          build-mode: manual
+      # 手动构建项目
+      - name: Build
+        run: dotnet build -c Release
 
       # 执行CodeQL代码分析
       # 运行静态分析并生成结果报告