.github/workflows/codeql.yml

name: CodeQL

on:
  push:
    branches:
      - develop
      - test
      - main
  pull_request:
    branches:
      - develop
      - test
      - main
  schedule:
    - cron: '0 8 * * 1'
  workflow_dispatch:

jobs:
  changes:
    runs-on: ubuntu-latest
    # Set job outputs to values from filter step
    outputs:
      fe-piattaforma: ${{ steps.filter.outputs.fe-piattaforma }}
      lib-repdgt-shared: ${{ steps.filter.outputs.lib-repdgt-shared }}
      ms-ente: ${{ steps.filter.outputs.ms-ente }}
      ms-gestione-utente: ${{ steps.filter.outputs.ms-gestione-utente }}
      ms-notifiche-integration: ${{ steps.filter.outputs.ms-notifiche-integration }}
      ms-open-data: ${{ steps.filter.outputs.ms-open-data }}
      ms-programma-progetto: ${{ steps.filter.outputs.ms-programma-progetto }}
      ms-questionario-cittadino: ${{ steps.filter.outputs.ms-questionario-cittadino }}
    steps:
    - name: Checkout repository
      uses: actions/checkout@v3

    # For pull requests it's not necessary to checkout the code
    - uses: dorny/paths-filter@v2
      id: filter
      with:
        filters: |
          fe-piattaforma:
            - 'fe-piattaforma/**'
          lib-repdgt-shared:
            - 'lib-repdgt-shared/**'
          ms-ente:
            - 'ms-ente/**'
          ms-gestione-utente:  
            - 'ms-gestione-utente/**'
          ms-notifiche-integration:
            - 'ms-notifiche-integration/**'
          ms-open-data:
            - 'ms-open-data/**'
          ms-programma-progetto:
            - 'ms-programma-progetto/**'
          ms-questionario-cittadino:
            - 'ms-questionario-cittadino/**'

  fe-piattaforma-Analyze:
    needs: changes
    if: ${{ needs.changes.outputs.fe-piattaforma == 'true' }}
    name: Analyze fe-piattaforma
    runs-on: ubuntu-latest
    permissions:
      actions: read
      contents: read
      security-events: write

    steps:
    - name: Checkout repository
      uses: actions/checkout@v3

    - name: Setup Node.js
      uses: actions/setup-node@v3
      with:
        node-version: 'lts/*'

    - name: Initialize CodeQL
      uses: github/codeql-action/init@v2
      with:
        languages: 'javascript'
        # queries: security-extended,security-and-quality

    - name: fe-piattaforma Build
      run: |
        cd ${{ github.workspace }}/fe-piattaforma
        npm install --force
        npm run build

    - name: Perform CodeQL Analysis
      uses: github/codeql-action/analyze@v2

  lib-repdgt-shared-Analyze:
    needs: changes
    if: ${{ needs.changes.outputs.lib-repdgt-shared == 'true' }}
    name: Analyze lib-repdgt-shared
    runs-on: ubuntu-latest
    permissions:
      actions: read
      contents: read
      security-events: write

    steps:
    - name: Checkout repository
      uses: actions/checkout@v3

    - name: Initialize CodeQL
      uses: github/codeql-action/init@v2
      with:
        languages: 'java'
        # queries: security-extended,security-and-quality

    - name: lib-repdgt-shared Compilation
      run: |
        cd ${{ github.workspace }}/lib-repdgt-shared
        mvn install

    - name: Perform CodeQL Analysis
      uses: github/codeql-action/analyze@v2

  ms-ente-Analyze:
    needs: changes
    if: ${{ needs.changes.outputs.ms-ente == 'true' }}
    name: Analyze ms-ente
    runs-on: ubuntu-latest
    permissions:
      actions: read
      contents: read
      security-events: write

    steps:
    - name: Checkout repository
      uses: actions/checkout@v3

    - name: Initialize CodeQL
      uses: github/codeql-action/init@v2
      with:
        languages: 'java'
        # queries: security-extended,security-and-quality

    - name: lib-repdgt-shared Compilation
      run: |
        cd ${{ github.workspace }}/lib-repdgt-shared
        mvn install

    - name: ms-ente Build
      run: |
        cd ${{ github.workspace }}/ms-ente
        mvn package

    - name: Perform CodeQL Analysis
      uses: github/codeql-action/analyze@v2

  ms-gestione-utente-Analyze:
    needs: changes
    if: ${{ needs.changes.outputs.ms-gestione-utente == 'true' }}
    name: Analyze ms-gestione-utente
    runs-on: ubuntu-latest
    permissions:
      actions: read
      contents: read
      security-events: write

    steps:
    - name: Checkout repository
      uses: actions/checkout@v3

    - name: Initialize CodeQL
      uses: github/codeql-action/init@v2
      with:
        languages: 'java'
        # queries: security-extended,security-and-quality

    - name: lib-repdgt-shared Compilation
      run: |
        cd ${{ github.workspace }}/lib-repdgt-shared
        mvn install

    - name: ms-gestione-utente Build
      run: |
        cd ${{ github.workspace }}/ms-gestione-utente
        mvn package

    - name: Perform CodeQL Analysis
      uses: github/codeql-action/analyze@v2

  ms-notifiche-integration-Analyze:
    needs: changes
    if: ${{ needs.changes.outputs.ms-notifiche-integration == 'true' }}
    name: Analyze ms-notifiche-integration
    runs-on: ubuntu-latest
    permissions:
      actions: read
      contents: read
      security-events: write

    steps:
    - name: Checkout repository
      uses: actions/checkout@v3

    - name: Initialize CodeQL
      uses: github/codeql-action/init@v2
      with:
        languages: 'java'
        # queries: security-extended,security-and-quality

    - name: lib-repdgt-shared Compilation
      run: |
        cd ${{ github.workspace }}/lib-repdgt-shared
        mvn install

    - name: ms-notifiche-integration Build
      run: |
        cd ${{ github.workspace }}/ms-notifiche-integration
        mvn package

    - name: Perform CodeQL Analysis
      uses: github/codeql-action/analyze@v2

  ms-open-data-Analyze:
    needs: changes
    if: ${{ needs.changes.outputs.ms-open-data == 'true' }}
    name: Analyze ms-open-data
    runs-on: ubuntu-latest
    permissions:
      actions: read
      contents: read
      security-events: write

    steps:
    - name: Checkout repository
      uses: actions/checkout@v3

    - name: Initialize CodeQL
      uses: github/codeql-action/init@v2
      with:
        languages: 'java'
        # queries: security-extended,security-and-quality

    - name: lib-repdgt-shared Compilation
      run: |
        cd ${{ github.workspace }}/lib-repdgt-shared
        mvn install

    - name: ms-open-data Build
      run: |
        cd ${{ github.workspace }}/ms-open-data
        mvn package

    - name: Perform CodeQL Analysis
      uses: github/codeql-action/analyze@v2

  ms-programma-progetto-Analyze:
    needs: changes
    if: ${{ needs.changes.outputs.ms-programma-progetto == 'true' }}
    name: Analyze ms-programma-progetto
    runs-on: ubuntu-latest
    permissions:
      actions: read
      contents: read
      security-events: write

    steps:
    - name: Checkout repository
      uses: actions/checkout@v3

    - name: Initialize CodeQL
      uses: github/codeql-action/init@v2
      with:
        languages: 'java'
        # queries: security-extended,security-and-quality

    - name: lib-repdgt-shared Compilation
      run: |
        cd ${{ github.workspace }}/lib-repdgt-shared
        mvn install

    - name: ms-programma-progetto Build
      run: |
        cd ${{ github.workspace }}/ms-programma-progetto
        mvn package

    - name: Perform CodeQL Analysis
      uses: github/codeql-action/analyze@v2

  ms-questionario-cittadino-Analyze:
    needs: changes
    if: ${{ needs.changes.outputs.ms-questionario-cittadino == 'true' }}
    name: Analyze ms-questionario-cittadino
    runs-on: ubuntu-latest
    permissions:
      actions: read
      contents: read
      security-events: write

    steps:
    - name: Checkout repository
      uses: actions/checkout@v3

    - name: Initialize CodeQL
      uses: github/codeql-action/init@v2
      with:
        languages: 'java'
        # queries: security-extended,security-and-quality

    - name: lib-repdgt-shared Compilation
      run: |
        cd ${{ github.workspace }}/lib-repdgt-shared
        mvn install

    - name: ms-questionario-cittadino Build
      run: |
        cd ${{ github.workspace }}/ms-questionario-cittadino
        mvn package
        cd ${{ github.workspace }}

    - name: Perform CodeQL Analysis
      uses: github/codeql-action/analyze@v2