Kea 2.7.5
|
This is only a brief excerpt about some QA systems used at ISC. For more information, please refer to the DHCP QA department.
While our primary environment for running CI pipeline is Jenkins hosted on AWS, there are some tools that are only available on github. One of such tools is CodeQL. CodeQL is a static analysis tool that can be used to find security vulnerabilities in the code. It is a part of Github Advanced Security suite. Github Advanced Security suite is available for free for open source projects.
The job is defined in .github/workflows/codeql.yml
file. It is configured to run once per week on master
and ci
branches. Sadly, it requires Kea compilation. With the runners provided on github having only 2 CPUs, it's a slow process. But we don't care that much - we get the results once per week. The results are available in the Security
tab of the repository (see https://github.com/isc-projects/kea/security). This tab is only visible to logged in members of the isc-projects organization.
There are several jobs configure on gitlab CI:
The pipeline can be inspected and configure here: https://gitlab.isc.org/isc-projects/kea/-/ci/editor
Jenkins is the primary CI environment. It is hosted on AWS. For details, see internal QA-DHCP wiki, ask on QA channel on mattermost or take a look at the internal qa-dhcp
repository.