Compare commits

..

13 Commits

Author SHA1 Message Date
939c70e7df
Merge branch 'main' of https://github.com/CUBETIQ/calpine-node 2023-03-20 08:52:39 +07:00
d4656630db
Upgrade pnpm to 7.30.0 2023-03-20 08:52:06 +07:00
Sambo Chea
a3144ab5b7
Merge pull request #2 from CUBETIQ/renovate/codacy-codacy-analysis-cli-action-digest
Update codacy/codacy-analysis-cli-action digest to 9acc82f
2023-03-09 20:01:27 +07:00
Sambo Chea
dbcd25c55e
Merge pull request #3 from CUBETIQ/renovate/snyk-actions-digest
Update snyk/actions digest to 8061827
2023-03-09 20:01:18 +07:00
Sambo Chea
31484e82ab
Merge pull request #5 from CUBETIQ/renovate/actions-checkout-3.x
Update actions/checkout action to v3
2023-03-09 19:18:00 +07:00
Sambo Chea
8e29d340c7
Merge pull request #6 from CUBETIQ/renovate/github-codeql-action-2.x
Update github/codeql-action action to v2
2023-03-09 19:16:40 +07:00
renovate[bot]
10986cac4b
Update github/codeql-action action to v2 2023-03-09 12:13:05 +00:00
renovate[bot]
6008b44edb
Update actions/checkout action to v3 2023-03-09 12:12:59 +00:00
renovate[bot]
e93c62f308
Update snyk/actions digest to 8061827 2023-03-09 08:48:33 +00:00
renovate[bot]
8518e07b8f
Update codacy/codacy-analysis-cli-action digest to 9acc82f 2023-03-09 08:48:27 +00:00
Sambo Chea
ab5c008846
Merge pull request #1 from CUBETIQ/renovate/configure
Configure Renovate
2023-03-09 15:48:11 +07:00
renovate[bot]
4de38b0b08
Add renovate.json 2023-03-09 04:39:15 +00:00
453e318817
Upgrade pnpm to 7.29.0 2023-03-06 09:54:12 +07:00
5 changed files with 14 additions and 8 deletions

View File

@ -35,11 +35,11 @@ jobs:
steps:
# Checkout the repository to the GitHub Actions runner
- name: Checkout code
uses: actions/checkout@v2
uses: actions/checkout@v3
# Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis
- name: Run Codacy Analysis CLI
uses: codacy/codacy-analysis-cli-action@d840f886c4bd4edc059706d09c6a1586111c540b
uses: codacy/codacy-analysis-cli-action@9acc82f5c4d097d191a50b89b4a447207d280b14
with:
# Check https://github.com/codacy/codacy-analysis-cli#project-token to get your project token from your Codacy repository
# You can also omit the token and run the tools that support default configurations
@ -55,6 +55,6 @@ jobs:
# Upload the SARIF file generated in the previous step
- name: Upload SARIF results file
uses: github/codeql-action/upload-sarif@v1
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: results.sarif

View File

@ -26,14 +26,14 @@ jobs:
snyk:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- uses: actions/checkout@v3
- name: Build a Docker image
run: docker build -t your/image-to-test .
- name: Run Snyk to check Docker image for vulnerabilities
# Snyk can be used to break the build when it detects vulnerabilities.
# In this case we want to upload the issues to GitHub Code Scanning
continue-on-error: true
uses: snyk/actions/docker@14818c4695ecc4045f33c9cee9e795a788711ca4
uses: snyk/actions/docker@806182742461562b67788a64410098c9d9b96adb
env:
# In order to use the Snyk Action you will need to have a Snyk API token.
# More details in https://github.com/snyk/actions#getting-your-snyk-token
@ -43,6 +43,6 @@ jobs:
image: your/image-to-test
args: --file=Dockerfile
- name: Upload result to GitHub Code Scanning
uses: github/codeql-action/upload-sarif@v1
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: snyk.sarif

View File

@ -2,7 +2,7 @@ FROM cubetiq/calpine-node:slim
LABEL maintainer="sombochea@cubetiqs.com"
# Install PNPM
ARG PNPM_VERSION=7.28.0
ARG PNPM_VERSION=7.30.0
ENV PNPM_HOME=/root/.local/share/pnpm
ENV PATH=$PATH:$PNPM_HOME

View File

@ -5,7 +5,7 @@
- CUBETIQ Alpine OS Linux (Latest)
- Nodejs 16 (16.19.0)
- PNPM 7 (7.28.0)
- PNPM 7 (7.30.0)
# [Docker Hub](https://hub.docker.com/r/cubetiq/calpine-node)

6
renovate.json Normal file
View File

@ -0,0 +1,6 @@
{
"$schema": "https://docs.renovatebot.com/renovate-schema.json",
"extends": [
"config:base"
]
}