Upgrade trivy scans (#997) #1009
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Centos build | |
| on: | |
| # allow manually trigger | |
| workflow_dispatch: | |
| push: | |
| branches: | |
| - main | |
| - 'maint-**' | |
| pull_request: | |
| branches: | |
| - main | |
| - 'maint-**' | |
| permissions: | |
| contents: read | |
| jobs: | |
| changes: | |
| runs-on: ubuntu-latest | |
| permissions: | |
| pull-requests: read | |
| outputs: | |
| changed: ${{ steps.filter.outputs.centos_build == 'true' }} | |
| steps: | |
| - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6 | |
| - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v2 | |
| id: filter | |
| with: | |
| filters: .github/path_filters.yml | |
| build: | |
| needs: changes | |
| if: ${{ github.repository == 'OpenVisualCloud/Media-Transport-Library' && needs.changes.outputs.changed == 'true' }} | |
| runs-on: ${{ matrix.os }} | |
| timeout-minutes: 60 | |
| container: | |
| image: quay.io/centos/centos:stream8 | |
| strategy: | |
| matrix: | |
| os: [ubuntu-latest] | |
| steps: | |
| - name: Harden Runner | |
| uses: step-security/harden-runner@0d381219ddf674d61a7572ddd19d7941e271515c # v2.9.0 | |
| with: | |
| egress-policy: audit | |
| - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6 | |
| - uses: DoozyX/[email protected] | |
| with: | |
| clangFormatVersion: '14' | |
| source: '.' | |
| extensions: 'hpp,h,cpp,c,cc' | |
| - name: Install the build dependency | |
| run: | | |
| sed -i 's/mirrorlist/#mirrorlist/g' /etc/yum.repos.d/CentOS-* | |
| sed -i 's|#baseurl=http://mirror.centos.org|baseurl=http://vault.centos.org|g' /etc/yum.repos.d/CentOS-* | |
| yum install -y dnf-plugins-core | |
| dnf config-manager --set-enabled powertools | |
| yum install -y epel-release | |
| yum install -y sudo git gcc gcc-c++ meson python3 python3-pyelftools pkg-config json-c-devel libpcap-devel gtest-devel SDL2-devel openssl-devel numactl-devel libasan | |
| yum install -y dpdk-devel | |
| yum install -y systemtap-sdt-devel clang llvm-devel | |
| - name: Git config | |
| run: | | |
| git config --global user.email "[email protected]" | |
| git config --global user.name "Your Name" | |
| - name: Build | |
| run: | | |
| export PKG_CONFIG_PATH=/usr/local/lib64/pkgconfig/:/usr/local/lib/pkgconfig/ | |
| ./build.sh | |
| - name: Build with debug | |
| run: | | |
| rm build -rf | |
| export PKG_CONFIG_PATH=/usr/local/lib64/pkgconfig/:/usr/local/lib/pkgconfig/ | |
| ./build.sh debug |