Extend CI to build project with sanitizers and set up code scanning

Question

Extend CI to build project with sanitizers and set up code scanning

AntoineRondelet opened this issue 4 years ago · 1 comments

As described in the title, it would be nice to support compilation with sanitizers to detect potential unsound memory accesses and race conditions on the CI server. Likewise, Github seems to support "code scanning" out of the box to detect potential vulnerabilities in the code.
Extending the CI to automate these type of checks as much as possible is a good way to maintain high security standards (along with high "code quality"/"stylistic"/"consistency" standards as currently ensured by the use of clang-format/clang-format)

Answer 1 · 2020-11-27T14:11:41.000Z

See also: https://github.com/snyk/actions