Skip to content
CI

Merge pull request #334 from CycloneDX/fix-container-permission-issue #1218

Sign in to view logs

Merge pull request #334 from CycloneDX/fix-container-permission-issue

Merge pull request #334 from CycloneDX/fix-container-permission-issue #1218

Workflow file for this run

.github/workflows/ci.yml at b973b4d
name: CI
on:
push:
branches:
- main
paths-ignore:
- examples/**
pull_request:
branches:
- main
paths-ignore:
- examples/**
permissions: { }
jobs:
licensecheck:
name: License Check
timeout-minutes: 5
runs-on: ubuntu-latest
steps:
- name: Checkout Repository
uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # tag=v3.5.3
- name: Check license headers
uses: apache/skywalking-eyes@438e4ea5682269933ea2c8b5608662e52af26959 # tag=v0.4.0
with:
config: .licenserc.yml
lint:
name: Lint
timeout-minutes: 5
runs-on: ubuntu-latest
steps:
- name: Checkout Repository
uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # tag=v3.5.3
- name: Setup Go
uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # tag=v4.0.1
with:
go-version: "1.18"
check-latest: true
- name: Run golangci-lint
uses: golangci/golangci-lint-action@639cd343e1d3b897ff35927a75193d57cfcba299 # tag=v3.6.0
with:
version: latest
- name: Scan Dockerfiles
uses: aquasecurity/trivy-action@41f05d9ecffa2ed3f1580af306000f734b733e54 # tag=0.11.2
with:
scan-type: config
skip-files: "Dockerfile.examples,Dockerfile.gitpod"
severity: "MEDIUM,HIGH,CRITICAL"
exit-code: "1"
test:
name: Test
timeout-minutes: 5
runs-on: ubuntu-latest
steps:
- name: Setup Go
uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # tag=v4.0.1
with:
go-version: "1.18"
check-latest: true
- name: Setup CycloneDX CLI
run: |
mkdir -p "$HOME/.local/bin"
echo "$HOME/.local/bin" >> $GITHUB_PATH
wget -O "$HOME/.local/bin/cyclonedx" https://github.com/CycloneDX/cyclonedx-cli/releases/download/v0.24.2/cyclonedx-linux-x64
echo "ef0d3b31d176e02bc594f83e19cfcea053c6bc5b197351f71696e189390f851d $HOME/.local/bin/cyclonedx" | sha256sum -c
chmod +x "$HOME/.local/bin/cyclonedx"
- name: Checkout Repository
uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # tag=v3.5.3
- name: Test
run: make test