Skip to content

Commit

Permalink
Merge pull request #14 from contentstack/master
Browse files Browse the repository at this point in the history 
Next branch update
  • Loading branch information
@nadeem-cs
nadeem-cs authored Jul 4, 2024
2 parents 43cbb9d + 8ffbfec commit 9638fb0
Show file tree
Hide file tree
Showing 4 changed files with 31 additions and 20 deletions.
7 changes: 6 additions & 1 deletion .github/workflows/jira.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ on:
pull_request:
types: [opened]
jobs:
security:
security-jira:
if: ${{ github.actor == 'dependabot[bot]' || github.actor == 'snyk-bot' || contains(github.event.pull_request.head.ref, 'snyk-fix-') || contains(github.event.pull_request.head.ref, 'snyk-upgrade-')}}
runs-on: ubuntu-latest
steps:
Expand All @@ -26,3 +26,8 @@ jobs:
PR: ${{ github.event.pull_request.html_url }}
fields: "${{ secrets.JIRA_FIELDS }}"
- name: Transition issue
uses: atlassian/gajira-transition@v3
with:
issue: ${{ steps.create.outputs.issue }}
transition: ${{ secrets.JIRA_TRANSITION }}
19 changes: 9 additions & 10 deletions .github/workflows/nuget-publish.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,35 +11,34 @@ jobs:
- name: Checkout repository
uses: actions/checkout@v1
- name: Setup .NET Core @ Latest
uses: actions/setup-dotnet@v1
with:
dotnet-version: '3.1.x'
uses: actions/setup-dotnet@v3
env:
NUGET_AUTH_TOKEN: ${{ secrets.NUGET_AUTH_TOKEN }}
NUGET_AUTH_TOKEN: ${{ secrets.NUGET_API_KEY }}
- name: Build solution and generate NuGet package
run: |
cd contentstack-utils-dotnet
dotnet pack -c Release -o out
- name: Push generated package to GitHub registry
run: dotnet nuget push ./contentstack-utils-dotnet/out/*.nupkg --api-key $NUGET_AUTH_TOKEN --skip-duplicate --no-symbols true
run: |
cd out
dotnet nuget push "contentstack.utils.*.nupkg" --api-key ${{ secrets.NUGET_API_KEY }} --skip-duplicate --no-symbols true --source https://api.nuget.org/v3/index.json
publish-git:
runs-on: windows-latest
steps:
- name: Checkout repository
uses: actions/checkout@v1
- name: Setup .NET Core @ Latest
uses: actions/setup-dotnet@v1
uses: actions/setup-dotnet@v3
with:
dotnet-version: '3.1.x'
source-url: https://nuget.pkg.github.com/Contentstack/index.json
env:
NUGET_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: Build solution and generate NuGet package
run: |
cd contentstack-utils-dotnet
dotnet pack -c Release -o out
- name: Push generated package to GitHub registry
run: dotnet nuget push ./contentstack-utils-dotnet/out/*.nupkg --api-key ${{ secrets.GITHUB_TOKEN }} --skip-duplicate --no-symbols true
run: |
cd out
dotnet nuget push "contentstack.utils.*.nupkg" --api-key ${{ secrets.NUGET_API_KEY }} --skip-duplicate --no-symbols true --source https://api.nuget.org/v3/index.json
11 changes: 11 additions & 0 deletions .github/workflows/sast-scan.yml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
name: SAST Scan
on:
pull_request:
types: [opened, synchronize, reopened]
jobs:
security-sast:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- name: Semgrep Scan
run: docker run -v /var/run/docker.sock:/var/run/docker.sock -v "${PWD}:/src" returntocorp/semgrep semgrep scan --config auto
14 changes: 5 additions & 9 deletions .github/workflows/sca-scan.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,17 +3,13 @@ on:
pull_request:
types: [opened, synchronize, reopened]
jobs:
security:
security-sca:
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/checkout@master
- uses: snyk/actions/setup@master
- name: Setup .NET
uses: actions/[email protected]
- name: Restore dependencies
run: dotnet restore ./Contentstack.Utils.sln
- uses: actions/checkout@master
- name: Run Snyk to check for vulnerabilities
run: cd Contentstack.Utils && snyk test --fail-on=all
uses: snyk/actions/dotnet@master
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with:
args: --fail-on=all

0 comments on commit 9638fb0

Please sign in to comment.