Merge pull request #326 from jaconi-io/dependabot/gradle/org.graalvm.… #675

Workflow file for this run

.github/workflows/continuous.yaml at 2cf8373

	name: Continuous Integration

	on:
	push:
	branches:
	- main
	paths:
	- '**'
	- '!mkdocs/**'
	pull_request:
	branches:
	- main
	paths:
	- '**'
	- '!mkdocs/**'

	jobs:
	lint-commits:
	if: github.actor != 'dependabot[bot]'

	runs-on: ubuntu-latest

	steps:
	- name: Checkout repository
	uses: actions/checkout@v4
	with:
	fetch-depth: 0

	- name: Install node.js
	uses: actions/setup-node@v4
	with:
	node-version: '20'

	- name: Lint commit message(s)
	run: \|
	yarn add @commitlint/cli
	yarn add @commitlint/config-conventional
	yarn run commitlint --from HEAD~${{ github.event.pull_request.commits }} --to HEAD

	security:
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@master
	- name: Run Snyk to check for vulnerabilities
	uses: snyk/actions/gradle-jdk17@master
	continue-on-error: true # To make sure that SARIF upload gets called
	env:
	SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
	with:
	args: --sarif-file-output=snyk.sarif
	- name: Upload result to GitHub Code Scanning
	uses: github/codeql-action/upload-sarif@v3
	with:
	sarif_file: snyk.sarif

	test:
	runs-on: ubuntu-latest

	steps:
	- name: Checkout repository
	uses: actions/checkout@v4
	with:
	fetch-depth: 0

	- name: Install Java
	uses: actions/setup-java@v4
	with:
	java-version: '17'
	distribution: 'temurin'

	- name: Validate Gradle wrapper
	uses: gradle/wrapper-validation-action@v3

	- name: Test with Gradle
	uses: gradle/gradle-build-action@v3
	env:
	MORP_OAUTH2CLIENT_REGISTRATION_GOOGLE_CLIENTID: ${{ secrets.GOOGLE_CLIENT_ID }}
	MORP_OAUTH2CLIENT_REGISTRATION_GOOGLE_CLIENTSECRET: ${{ secrets.GOOGLE_CLIENT_SECRET }}
	MORP_OAUTH2CLIENT_REGISTRATION_OKTA_CLIENTID: ${{ secrets.OKTA_CLIENT_ID }}
	MORP_OAUTH2CLIENT_REGISTRATION_OKTA_CLIENTSECRET: ${{ secrets.OKTA_CLIENT_SECRET }}
	TEST_OKTA_PASSWORD: ${{ secrets.OKTA_USER_PASSWORD }}
	SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	with:
	arguments: clean check sonarqube

	- name: JUnit Report
	if: always() # always run even if the previous step fails
	uses: mikepenz/action-junit-report@v5
	with:
	report_paths: 'build/test-results//.xml'

	- uses: codecov/codecov-action@v5
	if: always() # always run even if the previous step fails
	with:
	token: ${{ secrets.CODECOV_TOKEN }}
	files: build/reports/jacoco/test/jacocoTestReport.xml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge pull request #326 from jaconi-io/dependabot/gradle/org.graalvm.… #675

Workflow file

Merge pull request #326 from jaconi-io/dependabot/gradle/org.graalvm.… #675

Jobs

Run details

Workflow file for this run