Reduce Maven console output for CodeQL analysis; cache Maven repo (#2105

)
google · Apr 18, 2022 · feaf8dd · feaf8dd
1 parent 4dda4ec
commit feaf8dd
Showing 1 changed file with 9 additions and 1 deletion.
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -35,12 +35,20 @@ jobs:
         # Run all security queries and maintainability and reliability queries
         queries: +security-and-quality
 
+    - name: Cache local Maven repository
+      uses: actions/cache@v3
+      with:
+        path: ~/.m2/repository
+        key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
+        restore-keys: |
+          ${{ runner.os }}-maven-
+
     # Only compile main sources, but ignore test sources because findings for them might not
     # be that relevant (though GitHub security view also allows filtering by source type)
     # Can replace this with github/codeql-action/autobuild action to run complete build
     - name: Compile sources
       run: |
-        mvn compile
+        mvn compile --batch-mode
 
     - name: Perform CodeQL Analysis
       uses: github/codeql-action/analyze@v1