Luke Tainton
7c0587314e
Some checks failed
Validate PR Title / validate (pull_request) Successful in 37s
CI / ci (pull_request) Successful in 1m35s
Release / Test (push) Failing after 1s
Release / Create Release (push) Has been skipped
Release / Print Release (push) Has been skipped
Release / Publish Docker Images (push) Has been skipped
39 lines
937 B
YAML
39 lines
937 B
YAML
name: CI
|
|
on:
|
|
pull_request:
|
|
types:
|
|
- opened
|
|
- edited
|
|
- synchronize
|
|
- reopened
|
|
|
|
jobs:
|
|
ci:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Check out repository code
|
|
uses: actions/checkout@v4.2.2
|
|
with:
|
|
fetch-depth: 0
|
|
|
|
- uses: hadolint/hadolint-action@v3.1.0
|
|
with:
|
|
dockerfile: Dockerfile
|
|
output-file: hadolint.out
|
|
format: sonarqube
|
|
no-fail: true
|
|
|
|
- name: SonarQube Scan
|
|
uses: SonarSource/sonarqube-scan-action@v4.2.1
|
|
env:
|
|
SONAR_HOST_URL: ${{ secrets.SONARQUBE_HOST_URL }}
|
|
SONAR_TOKEN: ${{ secrets.SONARQUBE_TOKEN }}
|
|
|
|
- name: Snyk Vulnerability Scan
|
|
uses: snyk/actions/python@master
|
|
continue-on-error: true # Sometimes vulns aren't immediately fixable
|
|
env:
|
|
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
|
|
with:
|
|
args: test --all-projects
|