[Snyk] Security upgrade djangorestframework from 3.14.0 to 3.15.2 #147
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Tekken7-CI | |
on: | |
push: | |
branches: [ "main" ] | |
pull_request: | |
branches: [ "main" ] | |
permissions: | |
id-token: write | |
contents: read | |
pull-requests: write | |
jobs: | |
test: | |
uses: ./.github/workflows/reusable-workflow.yml | |
with: | |
deploy: false | |
environ: test | |
aws-ecr-repo: ${{ github.repository }} | |
image-version: ${{ github.run_number }} | |
database_engine: ${{ vars.DB_ENGINE }} | |
database_name: ${{ vars.DB_NAME }} | |
database_port: ${{ vars.DB_PORT }} | |
secrets: | |
aws-ecr-registry: ${{ secrets.AWS_ECR_REGISTRY }} | |
aws-region: ${{ secrets.AWS_REGION }} | |
aws-tekken7-oidc-role-arn: ${{ secrets.AWS_TEKKEN7_OIDC_ROLE_ARN }} | |
snyk_token: ${{ secrets.SNYK_TOKEN }} | |
test_reporter_id: ${{ secrets.TEST_REPORTER_ID }} | |
django_secret_key: ${{ secrets.DJANGO_SECRET_KEY }} | |
database_user: ${{ secrets.DB_USER }} | |
database_host: ${{ secrets.DB_HOST }} | |
database_password: ${{ secrets.DB_PASSWORD }} | |
staging: | |
needs: test | |
uses: ./.github/workflows/reusable-workflow.yml | |
with: | |
deploy: false | |
environ: staging | |
aws-ecr-repo: ${{ github.repository }} | |
image-version: ${{ github.run_number }} | |
database_engine: ${{ vars.DB_ENGINE }} | |
database_name: ${{ vars.DB_NAME }} | |
database_port: ${{ vars.DB_PORT }} | |
secrets: | |
aws-ecr-registry: ${{ secrets.AWS_ECR_REGISTRY }} | |
aws-region: ${{ secrets.AWS_REGION }} | |
aws-tekken7-oidc-role-arn: ${{ secrets.AWS_TEKKEN7_OIDC_ROLE_ARN }} | |
snyk_token: ${{ secrets.SNYK_TOKEN }} | |
test_reporter_id: ${{ secrets.TEST_REPORTER_ID }} | |
django_secret_key: ${{ secrets.DJANGO_SECRET_KEY }} | |
database_user: ${{ secrets.DB_USER }} | |
database_host: ${{ secrets.DB_HOST }} | |
database_password: ${{ secrets.DB_PASSWORD }} | |
production: | |
needs: staging | |
uses: ./.github/workflows/reusable-workflow.yml | |
with: | |
deploy: true | |
environ: production | |
aws-ecr-repo: ${{ github.repository }} | |
image-version: ${{ github.run_number }} | |
database_engine: ${{ vars.DB_ENGINE }} | |
database_name: ${{ vars.DB_NAME }} | |
database_port: ${{ vars.DB_PORT }} | |
secrets: | |
aws-ecr-registry: ${{ secrets.AWS_ECR_REGISTRY }} | |
aws-region: ${{ secrets.AWS_REGION }} | |
aws-tekken7-oidc-role-arn: ${{ secrets.AWS_TEKKEN7_OIDC_ROLE_ARN }} | |
snyk_token: ${{ secrets.SNYK_TOKEN }} | |
test_reporter_id: ${{ secrets.TEST_REPORTER_ID }} | |
django_secret_key: ${{ secrets.DJANGO_SECRET_KEY }} | |
database_user: ${{ secrets.DB_USER }} | |
database_host: ${{ secrets.DB_HOST }} | |
database_password: ${{ secrets.DB_PASSWORD }} |