Compare commits
No commits in common. "939c70e7df93bf6a97288e4b6035717b864998ad" and "b2b359b63b3c19ada2f5c196bff4c071b6216042" have entirely different histories.
939c70e7df
...
b2b359b63b
6
.github/workflows/codacy.yml
vendored
6
.github/workflows/codacy.yml
vendored
@ -35,11 +35,11 @@ jobs:
|
||||
steps:
|
||||
# Checkout the repository to the GitHub Actions runner
|
||||
- name: Checkout code
|
||||
uses: actions/checkout@v3
|
||||
uses: actions/checkout@v2
|
||||
|
||||
# Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis
|
||||
- name: Run Codacy Analysis CLI
|
||||
uses: codacy/codacy-analysis-cli-action@9acc82f5c4d097d191a50b89b4a447207d280b14
|
||||
uses: codacy/codacy-analysis-cli-action@d840f886c4bd4edc059706d09c6a1586111c540b
|
||||
with:
|
||||
# Check https://github.com/codacy/codacy-analysis-cli#project-token to get your project token from your Codacy repository
|
||||
# You can also omit the token and run the tools that support default configurations
|
||||
@ -55,6 +55,6 @@ jobs:
|
||||
|
||||
# Upload the SARIF file generated in the previous step
|
||||
- name: Upload SARIF results file
|
||||
uses: github/codeql-action/upload-sarif@v2
|
||||
uses: github/codeql-action/upload-sarif@v1
|
||||
with:
|
||||
sarif_file: results.sarif
|
||||
|
6
.github/workflows/snyk-container.yml
vendored
6
.github/workflows/snyk-container.yml
vendored
@ -26,14 +26,14 @@ jobs:
|
||||
snyk:
|
||||
runs-on: ubuntu-latest
|
||||
steps:
|
||||
- uses: actions/checkout@v3
|
||||
- uses: actions/checkout@v2
|
||||
- name: Build a Docker image
|
||||
run: docker build -t your/image-to-test .
|
||||
- name: Run Snyk to check Docker image for vulnerabilities
|
||||
# Snyk can be used to break the build when it detects vulnerabilities.
|
||||
# In this case we want to upload the issues to GitHub Code Scanning
|
||||
continue-on-error: true
|
||||
uses: snyk/actions/docker@806182742461562b67788a64410098c9d9b96adb
|
||||
uses: snyk/actions/docker@14818c4695ecc4045f33c9cee9e795a788711ca4
|
||||
env:
|
||||
# In order to use the Snyk Action you will need to have a Snyk API token.
|
||||
# More details in https://github.com/snyk/actions#getting-your-snyk-token
|
||||
@ -43,6 +43,6 @@ jobs:
|
||||
image: your/image-to-test
|
||||
args: --file=Dockerfile
|
||||
- name: Upload result to GitHub Code Scanning
|
||||
uses: github/codeql-action/upload-sarif@v2
|
||||
uses: github/codeql-action/upload-sarif@v1
|
||||
with:
|
||||
sarif_file: snyk.sarif
|
||||
|
@ -2,7 +2,7 @@ FROM cubetiq/calpine-node:slim
|
||||
LABEL maintainer="sombochea@cubetiqs.com"
|
||||
|
||||
# Install PNPM
|
||||
ARG PNPM_VERSION=7.30.0
|
||||
ARG PNPM_VERSION=7.28.0
|
||||
ENV PNPM_HOME=/root/.local/share/pnpm
|
||||
ENV PATH=$PATH:$PNPM_HOME
|
||||
|
||||
|
@ -5,7 +5,7 @@
|
||||
|
||||
- CUBETIQ Alpine OS Linux (Latest)
|
||||
- Nodejs 16 (16.19.0)
|
||||
- PNPM 7 (7.30.0)
|
||||
- PNPM 7 (7.28.0)
|
||||
|
||||
# [Docker Hub](https://hub.docker.com/r/cubetiq/calpine-node)
|
||||
|
||||
|
@ -1,6 +0,0 @@
|
||||
{
|
||||
"$schema": "https://docs.renovatebot.com/renovate-schema.json",
|
||||
"extends": [
|
||||
"config:base"
|
||||
]
|
||||
}
|
Loading…
Reference in New Issue
Block a user