Mercurial > p > roundup > code
comparison .github/workflows/anchore.yml @ 7231:0fd41edd26b0
Bump actions/checkout from 3.3.0 to 3.4.0 -- https://github.com/roundup-tracker/roundup/pull/11
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Mon, 20 Mar 2023 20:03:01 -0400 |
| parents | a81f3750a14a |
| children | f5e676c4383d |
comparison
equal
deleted
inserted
replaced
| 7230:8e118eb20d86 | 7231:0fd41edd26b0 |
|---|---|
| 35 security-events: write # for github/codeql-action/upload-sarif to upload SARIF results | 35 security-events: write # for github/codeql-action/upload-sarif to upload SARIF results |
| 36 actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status | 36 actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status |
| 37 runs-on: ubuntu-latest | 37 runs-on: ubuntu-latest |
| 38 steps: | 38 steps: |
| 39 - name: Checkout the code | 39 - name: Checkout the code |
| 40 uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c | 40 uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f |
| 41 # v3.3.0 | 41 # v3.4.0 |
| 42 - name: Build the Docker image | 42 - name: Build the Docker image |
| 43 run: docker pull python:3-alpine; docker build . --file scripts/Docker/Dockerfile --tag localbuild/testimage:latest | 43 run: docker pull python:3-alpine; docker build . --file scripts/Docker/Dockerfile --tag localbuild/testimage:latest |
| 44 - name: Run the Anchore scan action itself with GitHub Advanced Security code scanning integration enabled | 44 - name: Run the Anchore scan action itself with GitHub Advanced Security code scanning integration enabled |
| 45 uses: anchore/scan-action@dafbc97d7259af88b61bd260f2fde565d0668a72 # v3.3.4 | 45 uses: anchore/scan-action@dafbc97d7259af88b61bd260f2fde565d0668a72 # v3.3.4 |
| 46 id: scan | 46 id: scan |