Gitea 1.23.1 2

2025-01-12 18:23:24 +00:00
parent bdde495d62
commit 36e486b708
6 changed files with 109 additions and 58 deletions
--- a/.gitea/workflows/ci-python-poetry-with-docker.yml
+++ b/.gitea/workflows/ci-python-poetry-with-docker.yml
@ -19,14 +19,8 @@ jobs:
  ci:
    runs-on: ubuntu-latest
    steps:
-      - name: Set python-version
-        id: python-version
-        run: |
-          PYTHON_VERSION=${{ inputs.python-version }}
-          echo "value=${PYTHON_VERSION:-"3.11"}" >> $GITEA_OUTPUT
-
      - name: Check out repository code
-        uses: actions/checkout@v4.1.7
+        uses: actions/checkout@v4.2.2
        with:
          fetch-depth: 0

@ -40,17 +34,17 @@ jobs:
      - name: Setup Python
        uses: actions/setup-python@v5
        with:
-          python-version: "${{ steps.python-version.outputs.value }}"
+          python-version: "${{ inputs.python-version }}"

      - name: Setup Poetry
        uses: abatilo/actions-poetry@v4
-      
+
      - name: Setup virtual environment
        run: |
          poetry config virtualenvs.create true --local
          poetry config virtualenvs.in-project true --local
-      
-      - uses: actions/cache@v3
+
+      - uses: actions/cache@v4
        name: Define cache for dependencies
        with:
          path: ./.venv
@ -77,9 +71,9 @@ jobs:
          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}

      - name: Snyk Vulnerability Scan
-        uses: snyk/actions/python-3.10@master
-        continue-on-error: true # To make sure that SARIF upload gets called
+        uses: snyk/actions/python@master
+        continue-on-error: true # Sometimes vulns aren't immediately fixable
        env:
          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
        with:
-          args: --sarif-file-output=snyk.sarif --all-projects
+          args: test --all-projects