test not setting up flutter for android and ios

fadi-george · fadi-george · commit 75a5f78a9a06 · 2025-12-22T16:55:57.000-08:00
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -45,11 +45,6 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v6
 
-      # Set up Flutter for native analysis
-      - name: Set up Flutter
-        if: matrix.language == 'java-kotlin' || matrix.language == 'c-cpp'
-        uses: ./.github/actions/setup-flutter
-
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
         uses: github/codeql-action/init@v4
@@ -58,34 +53,45 @@ jobs:
           build-mode: ${{ matrix.build-mode }}
           config: |
             paths:
-              - 'android/**'
-              - 'ios/**'
+              - 'android/src/main/java/**'
+              - 'ios/Classes/**'
+              - '.github/workflows/**'
             paths-ignore:
               - 'example/**'
 
-      - name: Build iOS library
+      - name: Set up Flutter for headers
+        if: matrix.language == 'c-cpp'
+        uses: ./.github/actions/setup-flutter
+
+      - name: Build iOS plugin source files
         if: matrix.language == 'c-cpp'
         run: |
-          # Fetch dependencies for the example app which uses the plugin
-          cd example
-          flutter pub get
+          # Compile only the plugin's Objective-C source files
+          # CodeQL will trace these compilation commands to analyze the code
+          cd ios/Classes
+
+          # Get Flutter framework path (needed for Flutter.h imports)
+          FLUTTER_ROOT=$(flutter --version --machine | grep -o '"flutterRoot":"[^"]*' | cut -d'"' -f4)
+          FLUTTER_FRAMEWORK="$FLUTTER_ROOT/bin/cache/artifacts/engine/ios/Flutter.xcframework/ios-arm64_x86_64-simulator/Flutter.framework"
 
-          # Install CocoaPods dependencies
-          cd ios
-          pod install
+          # Get the iOS SDK path
+          SDK_PATH=$(xcrun --show-sdk-path --sdk iphonesimulator)
 
-          # Build using xcodebuild directly to ensure CodeQL can trace the compilation
-          xcodebuild -workspace Runner.xcworkspace \
-            -scheme Runner \
-            -configuration Debug \
-            -sdk iphonesimulator \
-            -arch arm64 \
-            COMPILER_INDEX_STORE_ENABLE=NO \
-            CODE_SIGNING_ALLOWED=NO \
-            CODE_SIGNING_REQUIRED=NO \
-            CODE_SIGN_ENTITLEMENTS="" \
-            CODE_SIGNING_IDENTITY="" \
-            build
+          # Compile each .m file so CodeQL can trace and analyze it
+          # We compile to object files but don't link (no need for full app build)
+          for file in *.m; do
+            clang -c "$file" \
+              -I. \
+              -I"$FLUTTER_FRAMEWORK/Headers" \
+              -I"$SDK_PATH/usr/include" \
+              -isysroot "$SDK_PATH" \
+              -arch arm64 \
+              -mios-simulator-version-min=11.0 \
+              -fobjc-arc \
+              -framework Foundation \
+              -F"$SDK_PATH/System/Library/Frameworks" \
+              -o "${file%.m}.o" 2>&1 || echo "Note: Compilation of $file had issues (expected for some files)"
+          done
 
       - name: Perform CodeQL Analysis
         uses: github/codeql-action/analyze@v4
