Mercurial > p > roundup > code
comparison .github/workflows/anchore.yml @ 7147:7f4d20ebae4a
another try. Use same shell that builds roundup image to update base.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Wed, 15 Feb 2023 18:50:53 -0500 |
| parents | 572d1a9f875c |
| children | cc49ac11850f |
comparison
equal
deleted
inserted
replaced
| 7146:572d1a9f875c | 7147:7f4d20ebae4a |
|---|---|
| 35 actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status | 35 actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status |
| 36 runs-on: ubuntu-latest | 36 runs-on: ubuntu-latest |
| 37 steps: | 37 steps: |
| 38 - name: Checkout the code | 38 - name: Checkout the code |
| 39 uses: actions/checkout@v3 | 39 uses: actions/checkout@v3 |
| 40 - name: Update base image | |
| 41 run: docker pull python:3-alpine | |
| 42 - name: Build the Docker image | 40 - name: Build the Docker image |
| 43 run: docker build . --file scripts/Docker/Dockerfile --tag localbuild/testimage:latest | 41 run: docker pull python:3-alpine; docker build . --file scripts/Docker/Dockerfile --tag localbuild/testimage:latest |
| 44 - name: Run the Anchore scan action itself with GitHub Advanced Security code scanning integration enabled | 42 - name: Run the Anchore scan action itself with GitHub Advanced Security code scanning integration enabled |
| 45 uses: anchore/scan-action@v3 | 43 uses: anchore/scan-action@v3 |
| 46 id: scan | 44 id: scan |
| 47 with: | 45 with: |
| 48 image: "localbuild/testimage:latest" | 46 image: "localbuild/testimage:latest" |