[docsy] Add GH workflows and fix link paths to papers (#81)

theupdateframework · Oct 3, 2024 · 8b0f6bb · 8b0f6bb
1 parent 94666c7
commit 8b0f6bb
Show file tree

Hide file tree

Showing 3 changed files with 66 additions and 4 deletions.
diff --git a/.github/workflows/check-format.yml b/.github/workflows/check-format.yml
@@ -0,0 +1,34 @@
+name: Files
+
+on:
+  merge_group:
+  pull_request:
+  push: { branches: [main] }
+
+jobs:
+  check-filenames:
+    name: FILENAME check
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - run: npm run check:filenames
+
+  check-formatting:
+    name: FILE FORMAT
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Create NPM cache-hash input file
+        run: |
+          mkdir -p tmp
+          jq '{devDependencies, engines, gitHubActionCacheKey}' package.json > tmp/package-ci.json
+
+      - uses: actions/setup-node@v4
+        with:
+          node-version-file: .nvmrc
+          cache: npm
+          cache-dependency-path: tmp/package-ci.json
+
+      - name: Check file format
+        run: npm run check:format --ignore-scripts
diff --git a/.github/workflows/check-links.yml b/.github/workflows/check-links.yml
@@ -0,0 +1,28 @@
+name: Links
+
+on:
+  merge_group:
+  pull_request:
+  push: { branches: [main] }
+
+jobs:
+  build-and-check-links:
+    name: BUILD and CHECK LINKS
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Create NPM cache-hash input file
+        run: |
+          mkdir -p tmp
+          jq '{devDependencies, engines, gitHubActionCacheKey}' package.json > tmp/package-ci.json
+
+      - uses: actions/setup-node@v4
+        with:
+          node-version-file: .nvmrc
+          cache: npm
+          cache-dependency-path: tmp/package-ci.json
+
+      - run: npm install --omit=optional
+
+      - run: npm run check:links
diff --git a/content/en/resources/publications.md b/content/en/resources/publications.md
@@ -7,12 +7,12 @@ The following papers provide detailed information on securing software updater
 systems, TUF's design, attacks on package managers, and package management
 security:
 
-- [Mercury: Bandwidth-Effective Prevention of Rollback Attacks Against Community Repositories](/static/papers/prevention-rollback-attacks-atc2017.pdf)
+- [Mercury: Bandwidth-Effective Prevention of Rollback Attacks Against Community Repositories](/papers/prevention-rollback-attacks-atc2017.pdf)
 
-- [Diplomat: Using Delegations to Protect Community Repositories](/static/papers/protect-community-repositories-nsdi2016.pdf)
+- [Diplomat: Using Delegations to Protect Community Repositories](/papers/protect-community-repositories-nsdi2016.pdf)
 
-- [Survivable Key Compromise in Software Update Systems](/static/papers/survivable-key-compromise-ccs2010.pdf)
+- [Survivable Key Compromise in Software Update Systems](/papers/survivable-key-compromise-ccs2010.pdf)
 
-- [A Look In the Mirror: Attacks on Package Managers](/static/papers/attacks-on-package-managers-ccs2008.pdf)
+- [A Look In the Mirror: Attacks on Package Managers](/papers/attacks-on-package-managers-ccs2008.pdf)
 
 - [Package Management Security](/papers/package-management-security-tr08-02.pdf)