Skip to content

chore(deps): bump advanced-security/maven-dependency-submission-action from 4.0.0 to 4.0.1 #264

chore(deps): bump advanced-security/maven-dependency-submission-action from 4.0.0 to 4.0.1

chore(deps): bump advanced-security/maven-dependency-submission-action from 4.0.0 to 4.0.1 #264

Workflow file for this run

---
name: "Lint: YAML"
concurrency:
group: lint-yaml-${{ github.head_ref || github.run_id }}
cancel-in-progress: true
"on":
## Check YAML on merge queue insertion
merge_group: {}
## Check on release
release:
types: [created]
## Check on push to `main` if modified
push:
branches:
- main
paths:
- ".github/workflows/*.yaml"
- ".github/workflows/*.yml"
- ".bazelci/presubmit.yml"
- ".bcr/*.yml"
## Check each PR change against `main`
pull_request:
paths:
- ".github/workflows/*.yaml"
- ".github/workflows/*.yml"
- ".bazelci/presubmit.yml"
- ".bcr/*.yml"
permissions:
contents: read
jobs:
## Task: Lint workflows via Actionlint
lint-workflows:
name: "Lint: Workflows"
uses: elide-dev/build-infra/.github/workflows/check.actions-lint.ci.yml@c54d8227f4bd37839a67ab9cb71fb59a0d197aee
permissions:
checks: write
pull-requests: read
id-token: write
contents: read
## Task: Lint Bazel Central Registry config files
lint-bcr-yaml:
name: "Lint: BCR"
runs-on: ubuntu-latest
permissions:
contents: "read"
id-token: "write"
checks: "write"
pull-requests: "read"
steps:
- name: Harden Runner
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1
with:
egress-policy: audit
- name: "Setup: Checkout"
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
- name: "Lint: YAML"
uses: karancode/yamllint-github-action@0a904064817924fc6fb449a32f67f25bfacc48ae # master
with:
yamllint_file_or_dir: ".bcr"
yamllint_config_filepath: "./.github/.yamllint.yml"
env:
GITHUB_ACCESS_TOKEN: ${{ secrets.GITHUB_TOKEN }}
## Task: Lint Bazel CI config files
lint-bazelci-yaml:
name: "Lint: Bazel CI"
runs-on: ubuntu-latest
permissions:
contents: "read"
id-token: "write"
checks: "write"
pull-requests: "read"
steps:
- name: Harden Runner
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1
with:
egress-policy: audit
- name: "Setup: Checkout"
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
- name: "Lint: YAML"
uses: karancode/yamllint-github-action@0a904064817924fc6fb449a32f67f25bfacc48ae # master
with:
yamllint_file_or_dir: ".bazelci"
yamllint_config_filepath: "./.github/.yamllint.yml"
env:
GITHUB_ACCESS_TOKEN: ${{ secrets.GITHUB_TOKEN }}