Right now coverity scans are scheduled daily unconditional, so it's often re-scanning an unchanged repo:
|
- cron: '0 11 * * *' # Daily at 11:00 UTC |
I think re-scanning is a good idea if the coverity version changes or the repo changes, but ideally not otherwise.
Once it's a tighter conditional, it would also be good to scan PRs before integrating them if possible, and maybe make the check more frequent. The changes to this repo are infrequent enough that it's probably better to leverage the 7/day max limit differently than a hard once per day.
Right now coverity scans are scheduled daily unconditional, so it's often re-scanning an unchanged repo:
libmcrx/.github/workflows/coverity-scan.yml
Line 6 in 8c6d6e0
I think re-scanning is a good idea if the coverity version changes or the repo changes, but ideally not otherwise.
Once it's a tighter conditional, it would also be good to scan PRs before integrating them if possible, and maybe make the check more frequent. The changes to this repo are infrequent enough that it's probably better to leverage the 7/day max limit differently than a hard once per day.