HTM-1286: Fix code scanning alert no. 352: Server-side request forgery #2768
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: 'Windows Maven build' | |
| env: | |
| MAVEN_OPTS: -Djava.awt.headless=true | |
| MAVEN_VERSION: '3.9.9' | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ ( github.ref == 'refs/heads/main' || github.ref == 'refs/heads/release' ) && format('ci-main-{0}', github.sha) || format('ci-main-{0}', github.ref) }} | |
| cancel-in-progress: true | |
| on: | |
| pull_request: | |
| jobs: | |
| build: | |
| name: 'Build w/ Java 17' | |
| runs-on: windows-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: 'Set up JDK' | |
| uses: actions/setup-java@v4 | |
| with: | |
| java-version: 17 | |
| distribution: 'temurin' | |
| cache: 'maven' | |
| - name: 'Set up Maven' | |
| uses: stCarolas/setup-maven@v5 | |
| with: | |
| maven-version: ${{ env.MAVEN_VERSION }} | |
| - name: 'Priming build' | |
| run: | | |
| mvn --% install -DskipTests -DskipITs -B -V -fae | |
| - name: 'Test with Maven' | |
| run: | | |
| mvn --% -e -fae -B clean test | |
| - name: 'Upload coverage to Codecov' | |
| uses: codecov/codecov-action@v4 | |
| with: | |
| token: ${{ secrets.CODECOV_TOKEN }} | |
| - name: 'Upload test results to Codecov' | |
| if: ${{ !cancelled() }} | |
| uses: codecov/test-results-action@v1 | |
| with: | |
| token: ${{ secrets.CODECOV_TOKEN }} | |
| files: target/surefire-reports/TEST-*.xml | |
| - name: 'Cleanup build artifacts and snapshots' | |
| run: | | |
| cmd --% /c for /f %i in ('dir /a:d /s /b %userprofile%\*SNAPSHOT*') do rd /s /q %i |