From 02c2c1de58839956ec78042d11de0acad43be280 Mon Sep 17 00:00:00 2001 From: Patrice Chalin Date: Thu, 3 Oct 2024 12:36:15 -0400 Subject: [PATCH] [docsy] Add GH workflows and fix paper paths --- .github/workflows/check-format.yml | 34 ++++++++++++++++++++++++++++ .github/workflows/check-links.yml | 28 +++++++++++++++++++++++ content/en/resources/publications.md | 8 +++---- 3 files changed, 66 insertions(+), 4 deletions(-) create mode 100644 .github/workflows/check-format.yml create mode 100644 .github/workflows/check-links.yml diff --git a/.github/workflows/check-format.yml b/.github/workflows/check-format.yml new file mode 100644 index 0000000..0739ce0 --- /dev/null +++ b/.github/workflows/check-format.yml @@ -0,0 +1,34 @@ +name: Files + +on: + merge_group: + pull_request: + push: { branches: [main] } + +jobs: + check-filenames: + name: FILENAME check + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + - run: npm run check:filenames + + check-formatting: + name: FILE FORMAT + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + + - name: Create NPM cache-hash input file + run: | + mkdir -p tmp + jq '{devDependencies, engines, gitHubActionCacheKey}' package.json > tmp/package-ci.json + + - uses: actions/setup-node@v4 + with: + node-version-file: .nvmrc + cache: npm + cache-dependency-path: tmp/package-ci.json + + - name: Check file format + run: npm run check:format --ignore-scripts diff --git a/.github/workflows/check-links.yml b/.github/workflows/check-links.yml new file mode 100644 index 0000000..28ec994 --- /dev/null +++ b/.github/workflows/check-links.yml @@ -0,0 +1,28 @@ +name: Links + +on: + merge_group: + pull_request: + push: { branches: [main] } + +jobs: + build-and-check-links: + name: BUILD and CHECK LINKS + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + + - name: Create NPM cache-hash input file + run: | + mkdir -p tmp + jq '{devDependencies, engines, gitHubActionCacheKey}' package.json > tmp/package-ci.json + + - uses: actions/setup-node@v4 + with: + node-version-file: .nvmrc + cache: npm + cache-dependency-path: tmp/package-ci.json + + - run: npm install --omit=optional + + - run: npm run check:links diff --git a/content/en/resources/publications.md b/content/en/resources/publications.md index 7d9424b..cc1b344 100644 --- a/content/en/resources/publications.md +++ b/content/en/resources/publications.md @@ -7,12 +7,12 @@ The following papers provide detailed information on securing software updater systems, TUF's design, attacks on package managers, and package management security: -- [Mercury: Bandwidth-Effective Prevention of Rollback Attacks Against Community Repositories](/static/papers/prevention-rollback-attacks-atc2017.pdf) +- [Mercury: Bandwidth-Effective Prevention of Rollback Attacks Against Community Repositories](/papers/prevention-rollback-attacks-atc2017.pdf) -- [Diplomat: Using Delegations to Protect Community Repositories](/static/papers/protect-community-repositories-nsdi2016.pdf) +- [Diplomat: Using Delegations to Protect Community Repositories](/papers/protect-community-repositories-nsdi2016.pdf) -- [Survivable Key Compromise in Software Update Systems](/static/papers/survivable-key-compromise-ccs2010.pdf) +- [Survivable Key Compromise in Software Update Systems](/papers/survivable-key-compromise-ccs2010.pdf) -- [A Look In the Mirror: Attacks on Package Managers](/static/papers/attacks-on-package-managers-ccs2008.pdf) +- [A Look In the Mirror: Attacks on Package Managers](/papers/attacks-on-package-managers-ccs2008.pdf) - [Package Management Security](/papers/package-management-security-tr08-02.pdf)