diff --git a/.github/workflows/audit.yml b/.github/workflows/audit.yml new file mode 100644 index 0000000..e1cd7fa --- /dev/null +++ b/.github/workflows/audit.yml @@ -0,0 +1,25 @@ +--- +name: "Audit" +on: # yamllint disable-line rule:truthy + push: + pull_request: + schedule: + - cron: "0 0 * * 1" +jobs: + Audit: + runs-on: "ubuntu-latest" + env: + GOHOME: "/home/runner/go" + steps: + - run: "echo \"${PATH}:${GOHOME}/bin\" >> $GITHUB_PATH" + - uses: "actions/checkout@v4" + - run: "sudo apt-get install -y cargo golang-1.21 make npm" + - run: "make -f install.mk" + # + # Debian-based Ubuntu GitHub Actions base OS is + # expected to present unresolvable CVE's. + # Disabling (GitHub Actions Hosted) `safety` runner step for now. + # Care when merging pull requests. + # In any case, all CI/CD jobs can be peformed locally. + # + - run: "make snyk" diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml new file mode 100644 index 0000000..ed1e2d8 --- /dev/null +++ b/.github/workflows/lint.yml @@ -0,0 +1,18 @@ +--- +name: "Lint" +on: # yamllint disable-line rule:truthy + push: + pull_request: +jobs: + Lint: + runs-on: "ubuntu-latest" + env: + GOHOME: "/home/runner/go" + steps: + - run: "echo \"${PATH}:${GOHOME}/bin\" >> $GITHUB_PATH" + - uses: "actions/checkout@v4" + - run: "sudo apt-add-repository ppa:longsleep/golang-backports" + - run: "sudo apt-get update" + - run: "sudo apt-get install -y cargo golang-1.21 make npm" + - run: "make -f install.mk" + - run: "make lint"