gewuyou/GFramework
1
0
Fork 0
mirror of https://github.com/GeWuYou/GFramework.git synced 2026-03-24 20:34:29 +08:00
Code Issues Packages Projects Releases Wiki Activity

perf(ci): 优化CI工作流配置以提升构建性能

Browse Source 
- 为MegaLinter添加缓存机制以加速代码质量检查
- 为TruffleHog添加缓存机制以提升安全扫描效率
- 扩展NuGet包缓存路径并包含更多依赖目录
- 添加.NET工具缓存以减少重复下载时间
- 将CodeQL构建模式从自动改为手动控制
- 更新.NET版本配置仅保留8.0.x版本支持
- 调整仓库检出深度设置以优化拉取速度
This commit is contained in:
GeWuYou 2026-02-09 11:27:10 +08:00
parent 94bfa9aa29
commit edef111ce7
2 changed files with 34 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

29
.github/workflows/ci.yml vendored
View File

@ -23,6 +23,16 @@ jobs:
uses: actions/checkout@v6 uses: actions/checkout@v6
with: with:
fetch-depth: 0 fetch-depth: 0
# 缓存MegaLinter
- name: Cache MegaLinter
uses: actions/cache@v5
with:
path: ~/.cache/megalinter
key: ${{ runner.os }}-megalinter-v9
restore-keys: |
${{ runner.os }}-megalinter-
# MegaLinter扫描步骤 # MegaLinter扫描步骤
# 执行代码质量检查和安全扫描生成SARIF格式报告 # 执行代码质量检查和安全扫描生成SARIF格式报告
- name: MegaLinter - name: MegaLinter
@ -36,6 +46,12 @@ jobs:
uses: github/codeql-action/upload-sarif@v4 uses: github/codeql-action/upload-sarif@v4
with: with:
sarif_file: megalinter-reports/sarif sarif_file: megalinter-reports/sarif
# 缓存TruffleHog
- name: Cache TruffleHog
uses: actions/cache@v5
with:
path: ~/.cache/trufflehog
key: ${{ runner.os }}-trufflehog
# TruffleHog OSS 扫描步骤 # TruffleHog OSS 扫描步骤
# 使用 TruffleHog 工具扫描代码库中的敏感信息泄露如API密钥、密码等 # 使用 TruffleHog 工具扫描代码库中的敏感信息泄露如API密钥、密码等
@ -70,8 +86,17 @@ jobs:
- name: Cache NuGet packages - name: Cache NuGet packages
uses: actions/cache@v5 uses: actions/cache@v5
with: with:
path: ~/.nuget/packages path: |
key: ${{ runner.os }}-nuget-${{ hashFiles('**/*.csproj') }} ~/.nuget/packages
~/.local/share/NuGet
key: ${{ runner.os }}-nuget-${{ hashFiles('**/*.csproj', '**/nuget.config') }}
# 配置.NET本地工具缓存以加速后续构建
- name: Cache dotnet tools
uses: actions/cache@v5
with:
path: ~/.dotnet/tools
key: ${{ runner.os }}-dotnet-tools-${{ hashFiles('.config/dotnet-tools.json') }}
# 执行NuGet包恢复操作 # 执行NuGet包恢复操作
- name: Restore - name: Restore

11
.github/workflows/codeql.yml vendored
View File

@ -28,16 +28,16 @@ jobs:
steps: steps:
- name: Checkout repository - name: Checkout repository
uses: actions/checkout@v6 uses: actions/checkout@v6
with:
fetch-depth: 0
# 设置.NET运行时环境 # 设置.NET运行时环境
# 配置.NET 8.0.x、9.0.x和10.0.x版本支持 # 配置.NET 8.0.x版本支持
- name: Setup .NET - name: Setup .NET
uses: actions/setup-dotnet@v5 uses: actions/setup-dotnet@v5
with: with:
dotnet-version: | dotnet-version: |
8.0.x 8.0.x
9.0.x
10.0.x
# 初始化CodeQL分析环境 # 初始化CodeQL分析环境
# 配置C#语言支持并启用自动构建模式 # 配置C#语言支持并启用自动构建模式
@ -45,7 +45,10 @@ jobs:
uses: github/codeql-action/init@v4 uses: github/codeql-action/init@v4
with: with:
languages: csharp languages: csharp
build-mode: autobuild build-mode: manual
# 手动构建项目
- name: Build
run: dotnet build -c Release
# 执行CodeQL代码分析 # 执行CodeQL代码分析
# 运行静态分析并生成结果报告 # 运行静态分析并生成结果报告