Skip to content

Merge pull request #68 from Ontotext-AD/update-version-10.6.3 #366

Merge pull request #68 from Ontotext-AD/update-version-10.6.3

Merge pull request #68 from Ontotext-AD/update-version-10.6.3 #366

Workflow file for this run

name: Continuous Integration
on:
push:
branches: [ "main" ]
pull_request:
branches: [ "main" ]
jobs:
analyze:
name: Analyze the Terraform scripts
runs-on: ubuntu-22.04
timeout-minutes: 5
permissions:
actions: read
contents: read
security-events: write
steps:
- id: clone_repository
name: Clone repository
# actions/[email protected]
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
- id: setup_terraform
name: Setup Terraform CLI
# hashicorp/[email protected]
uses: hashicorp/setup-terraform@a1502cd9e758c50496cc9ac5308c4843bcd56d36
- id: run_terraform_init
name: Run Terraform init
run: terraform init
- id: run_terraform_fmt
name: Run Terraform format check
run: terraform fmt -check -recursive
- id: run_terraform_validate
name: Run Terraform validate check
run: terraform validate
- id: run_trivy_config
name: Run Trivy vulnerability scanner
# aquasecurity/[email protected]
uses: aquasecurity/trivy-action@91713af97dc80187565512baba96e4364e983601
with:
scan-type: config
trivy-config: trivy.yaml
hide-progress: false
format: sarif
output: trivy.sarif
- id: run_sarif_upload
name: Upload Trivy SARIF results
# github/codeql-action/[email protected]
uses: github/codeql-action/upload-sarif@382a50a0284c0de445104889a9d6003acb4b3c1d
timeout-minutes: 1
with:
sarif_file: trivy.sarif