Merge pull request #208 from Nick2bad4u/dependabot/github_actions/git… #575
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This workflow executes several linters on changed files based on languages used in your code base whenever | |
| # you push a code or open a pull request. | |
| # | |
| # You can adjust the behavior by modifying this file. | |
| # For more information, see: | |
| # https://github.com/github/super-linter | |
| name: Lint Code Base | |
| on: | |
| workflow_dispatch: | |
| push: | |
| branches: [ "main" ] | |
| pull_request: | |
| branches: [ "main" ] | |
| permissions: | |
| contents: read | |
| jobs: | |
| run-lint: | |
| permissions: | |
| contents: read # for actions/checkout to fetch code | |
| statuses: write # for github/super-linter to mark status of each linter run | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Harden Runner | |
| uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 | |
| with: | |
| egress-policy: block | |
| allowed-endpoints: > | |
| api.github.com:443 | |
| api0.prismacloud.io:443 | |
| files.pythonhosted.org:443 | |
| github.com:443 | |
| pypi.org:443 | |
| - name: Checkout code | |
| uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 | |
| with: | |
| # Full git history is needed to get a proper list of changed files within `super-linter` | |
| fetch-depth: 0 | |
| - name: Lint Code Base | |
| uses: github/super-linter@b807e99ddd37e444d189cfd2c2ca1274d8ae8ef1 # v7 | |
| #checkov:skip=skip-check:CKV2_GHA_1 | |
| env: | |
| VALIDATE_ALL_CODEBASE: true | |
| DEFAULT_BRANCH: "main" | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| DISABLE_ERRORS: true |