Add zizmor workflow to scan Github Actions code #100
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: repoaudit CI | |
| on: | |
| pull_request: | |
| push: | |
| jobs: | |
| lint: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout repo | |
| uses: actions/checkout@v4 | |
| with: | |
| persist-credentials: false | |
| - name: Setup Python | |
| uses: actions/setup-python@v3 | |
| - name: Install Poetry | |
| uses: snok/install-poetry@v1 | |
| - name: Install dependencies | |
| working-directory: ./repoaudit | |
| run: poetry install | |
| - name: Check flake8 | |
| working-directory: ./repoaudit | |
| run: poetry run flake8 . | |
| - name: Check black | |
| working-directory: ./repoaudit | |
| run: poetry run black --check --diff . | |
| - name: Check isort | |
| working-directory: ./repoaudit | |
| run: poetry run isort -c . | |
| test: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout repo | |
| uses: actions/checkout@v4 | |
| with: | |
| persist-credentials: false | |
| - name: Setup Python | |
| uses: actions/setup-python@v3 | |
| - name: Install Poetry | |
| uses: snok/install-poetry@v1 | |
| - name: Install dependencies | |
| run: | | |
| cd repoaudit && poetry install | |
| - name: Test repoaudit | |
| run: | | |
| cd repoaudit && poetry run repoaudit --help |