Compare commits
2 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
1e694fcbf0
|
|||
|
077dbf95c2
|
@@ -11,7 +11,7 @@ jobs:
|
||||
runs-on: ubuntu-latest
|
||||
steps:
|
||||
- name: Checkout
|
||||
uses: https://git.quad4.io/actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6
|
||||
uses: https://git.quad4.io/actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
|
||||
- name: Setup Node.js
|
||||
uses: https://git.quad4.io/actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4
|
||||
with:
|
||||
@@ -33,7 +33,7 @@ jobs:
|
||||
needs: check
|
||||
steps:
|
||||
- name: Checkout
|
||||
uses: https://git.quad4.io/actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6
|
||||
uses: https://git.quad4.io/actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
|
||||
- name: Setup Node.js
|
||||
uses: https://git.quad4.io/actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4
|
||||
with:
|
||||
|
||||
@@ -22,7 +22,7 @@ jobs:
|
||||
|
||||
steps:
|
||||
- name: Checkout repository
|
||||
uses: https://git.quad4.io/actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
|
||||
uses: https://git.quad4.io/actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1
|
||||
|
||||
- name: Set up QEMU
|
||||
uses: https://git.quad4.io/actions/setup-qemu-action@c7c53464625b32c7a7e944ae62b3e17d2b600130 # v3.7.0
|
||||
|
||||
@@ -11,7 +11,7 @@ jobs:
|
||||
runs-on: ubuntu-latest
|
||||
steps:
|
||||
- name: Checkout repository
|
||||
uses: https://git.quad4.io/actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6
|
||||
uses: https://git.quad4.io/actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
|
||||
|
||||
- name: Setup Node.js
|
||||
uses: https://git.quad4.io/actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4
|
||||
|
||||
@@ -14,7 +14,7 @@ jobs:
|
||||
runs-on: ubuntu-latest
|
||||
steps:
|
||||
- name: Checkout
|
||||
uses: https://git.quad4.io/actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6
|
||||
uses: https://git.quad4.io/actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
|
||||
|
||||
- name: OSV scan
|
||||
run: bash scripts/osv_scan.sh
|
||||
|
||||
@@ -14,7 +14,7 @@ jobs:
|
||||
runs-on: ubuntu-latest
|
||||
steps:
|
||||
- name: Checkout
|
||||
uses: https://git.quad4.io/actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6
|
||||
uses: https://git.quad4.io/actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
|
||||
|
||||
- name: OSV scan
|
||||
run: bash scripts/osv_scan.sh
|
||||
|
||||
@@ -90,6 +90,8 @@ The project uses [Task](https://taskfile.dev/) for all development tasks.
|
||||
| podman-build | Build Podman image |
|
||||
| podman-run | Run Podman container |
|
||||
| podman | Build and run Podman container |
|
||||
| scan | Scan container image with trivy |
|
||||
| sbom | Generate SBOM with trivy |
|
||||
| version:minor | Bump version minor |
|
||||
| version:major | Bump version major |
|
||||
| setup | Setup development environment |
|
||||
|
||||
+13
-1
@@ -25,7 +25,7 @@ tasks:
|
||||
publish:
|
||||
desc: Publish to npm registry
|
||||
cmds:
|
||||
- pnpm publish
|
||||
- pnpm publish --no-git-checks
|
||||
|
||||
preview:
|
||||
desc: Preview production build
|
||||
@@ -80,6 +80,18 @@ tasks:
|
||||
desc: Build and run Podman container
|
||||
deps: [podman-build, podman-run]
|
||||
|
||||
scan:
|
||||
desc: Scan container image with trivy
|
||||
cmds:
|
||||
- trivy image --scanners vuln surveilled
|
||||
|
||||
sbom:
|
||||
desc: Generate SBOM with trivy
|
||||
cmds:
|
||||
- mkdir -p sbom
|
||||
- trivy fs --format spdx-json --include-dev-deps --output sbom/sbom.spdx.json .
|
||||
- trivy fs --format cyclonedx --include-dev-deps --output sbom/sbom.cyclonedx.json .
|
||||
|
||||
setup:
|
||||
desc: Setup development environment
|
||||
cmds:
|
||||
|
||||
Reference in New Issue
Block a user