From 8a7cd42bf746ab3837c389cf9107549b91c82b22 Mon Sep 17 00:00:00 2001 From: Jan Macku Date: Tue, 19 Dec 2023 12:52:50 +0100 Subject: [PATCH 1/2] ci: enable shellcheck doc: https://github.com/redhat-plumbers-in-action/differential-shellcheck --- .github/workflows/differential-shellcheck.yml | 35 +++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 .github/workflows/differential-shellcheck.yml diff --git a/.github/workflows/differential-shellcheck.yml b/.github/workflows/differential-shellcheck.yml new file mode 100644 index 00000000..34a50354 --- /dev/null +++ b/.github/workflows/differential-shellcheck.yml @@ -0,0 +1,35 @@ +name: Differential ShellCheck +on: + push: + branches: [ main ] + pull_request: + branches: [ main ] + +permissions: + contents: read + +jobs: + lint: + runs-on: ubuntu-latest + + permissions: + security-events: write + + steps: + - name: Repository checkout + uses: actions/checkout@v4 + with: + fetch-depth: 0 + + - id: ShellCheck + name: Differential ShellCheck + uses: redhat-plumbers-in-action/differential-shellcheck@v5 + with: + token: ${{ secrets.GITHUB_TOKEN }} + + - if: ${{ always() }} + name: Upload artifact with ShellCheck defects in SARIF format + uses: actions/upload-artifact@v3 + with: + name: Differential ShellCheck SARIF + path: ${{ steps.ShellCheck.outputs.sarif }} From 68080de512ec7cf890130505a5e9d955fc563029 Mon Sep 17 00:00:00 2001 From: Jan Macku Date: Tue, 19 Dec 2023 12:54:20 +0100 Subject: [PATCH 2/2] ci: enable dependabot for github actions version updates --- .github/dependabot.yml | 6 ++++++ 1 file changed, 6 insertions(+) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 00000000..3a626c3a --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,6 @@ +version: 2 +updates: + - package-ecosystem: github-actions + directory: / + schedule: + interval: monthly