feat(deps): update dependencies and maven plugins #81
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Continuous Integration | |
on: | |
push: | |
branches-ignore: | |
- master | |
paths-ignore: | |
- '.github/**' | |
- '**/README.md' | |
env: | |
# This will suppress any download for dependencies and plugins or upload messages which would clutter the console log. | |
# `showDateTime` will show the passed time in milliseconds. You need to specify `--batch-mode` to make this work. | |
MAVEN_OPTS: "-Dhttps.protocols=TLSv1.2 -Dorg.slf4j.simpleLogger.log.org.apache.maven.cli.transfer.Slf4jMavenTransferListener=WARN -Dorg.slf4j.simpleLogger.showDateTime=true -Djava.awt.headless=true" | |
# As of Maven 3.3.0 instead of this you may define these options in `.mvn/maven.config` so the same config is used | |
# when running from the command line. | |
# `installAtEnd` and `deployAtEnd` are only effective with recent version of the corresponding plugins. | |
MAVEN_CLI_OPTS: "--batch-mode --errors --fail-at-end --show-version -DinstallAtEnd=true -DdeployAtEnd=true" | |
jobs: | |
build: | |
runs-on: ubuntu-latest | |
timeout-minutes: 10 | |
steps: | |
- uses: actions/checkout@v3 | |
## Enable Caching | |
- name: Cache SonarCloud packages | |
uses: actions/cache@v3 | |
with: | |
path: ~/.sonar/cache | |
key: ${{ runner.os }}-sonar | |
restore-keys: ${{ runner.os }}-sonar | |
## Configure JDK 11 | |
- name: Set up JDK 11 | |
uses: actions/setup-java@v3 | |
with: | |
distribution: 'temurin' | |
java-version: '11' | |
cache: 'maven' | |
## Build with maven | |
- name: Perform build and analysis | |
env: | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any | |
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} | |
run: mvn $MAVEN_CLI_OPTS verify org.sonarsource.scanner.maven:sonar-maven-plugin:sonar | |
## Notify Mattermost | |
- name: Notify Developers | |
uses: 8398a7/action-slack@v3 | |
with: | |
username: GitHub | |
icon_emoji: octocat | |
channel: ci_js | |
status: ${{ job.status }} | |
fields: repo,message,commit,author,action,eventName,ref | |
text: ${{ github.workflow }} ${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }} | |
env: | |
SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }} | |
# vermutlich muss man das personal access token der Action übergeben, damit diese nach mattermost | |
# funken darf. Alternativ wie unten einstellen, sodass bei dependabot PRs nichts passiert. | |
if: ${{ github.actor != 'dependabot[bot]' }} |