Mercurial > p > roundup > code
comparison .github/workflows/ci-test.yml @ 7148:cc49ac11850f
Pin actions by using hashes removing tags like @v2. or @master
Now that actions are being scanned by dependabot, this is easier to
keep up with.
This also clears multiple security issues flagged by ossf-scorecard.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Thu, 16 Feb 2023 20:12:55 -0500 |
| parents | 890b55c374a3 |
| children | 5cbe5f2a636b |
comparison
equal
deleted
inserted
replaced
| 7147:7f4d20ebae4a | 7148:cc49ac11850f |
|---|---|
| 88 # example directives: | 88 # example directives: |
| 89 # disable step | 89 # disable step |
| 90 # if: {{ false }} | 90 # if: {{ false }} |
| 91 # continue running if step fails | 91 # continue running if step fails |
| 92 # continue-on-error: true | 92 # continue-on-error: true |
| 93 uses: actions/checkout@v3 | 93 uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0 |
| 94 | 94 |
| 95 # Setup version of Python to use | 95 # Setup version of Python to use |
| 96 - name: Set Up Python ${{ matrix.python-version }} | 96 - name: Set Up Python ${{ matrix.python-version }} |
| 97 uses: actions/setup-python@v4 | 97 uses: actions/setup-python@d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435 # v4.5.0 |
| 98 with: | 98 with: |
| 99 python-version: ${{ matrix.python-version }} | 99 python-version: ${{ matrix.python-version }} |
| 100 cache: 'pip' | 100 cache: 'pip' |
| 101 | 101 |
| 102 # Display the Python version being used | 102 # Display the Python version being used |
| 221 pytest -v -r a test/ --cov=roundup | 221 pytest -v -r a test/ --cov=roundup |
| 222 fi | 222 fi |
| 223 | 223 |
| 224 - name: Upload coverage to Codecov | 224 - name: Upload coverage to Codecov |
| 225 # see: https://github.com/codecov/codecov-action#usage | 225 # see: https://github.com/codecov/codecov-action#usage |
| 226 uses: codecov/codecov-action@v3 | 226 uses: codecov/codecov-action@d9f34f8cd5cb3b3eb79b3e4b5dae3a16df499a70 # v3.1.1 |
| 227 with: | 227 with: |
| 228 verbose: true | 228 verbose: true |
| 229 token: ${{ secrets.CODECOV_TOKEN }} | 229 token: ${{ secrets.CODECOV_TOKEN }} |
| 230 | 230 |
| 231 - name: Upload coverage to Coveralls | 231 - name: Upload coverage to Coveralls |
| 232 # python 2.7 and 3.6 versions of coverage can't produce lcov files. | 232 # python 2.7 and 3.6 versions of coverage can't produce lcov files. |
| 233 if: matrix.python-version != '2.7' && matrix.python-version != '3.6' | 233 if: matrix.python-version != '2.7' && matrix.python-version != '3.6' |
| 234 uses: coverallsapp/github-action@master | 234 uses: coverallsapp/github-action@3284643be2c47fb6432518ecec17f1255e8a06a6 # master |
| 235 with: | 235 with: |
| 236 github-token: ${{ secrets.GITHUB_TOKEN }} | 236 github-token: ${{ secrets.GITHUB_TOKEN }} |
| 237 path-to-lcov: coverage.lcov | 237 path-to-lcov: coverage.lcov |
| 238 parallel: run-{{ matrix.python-version }}-{{ matrix.os }} | 238 parallel: run-{{ matrix.python-version }}-{{ matrix.os }} |
| 239 | 239 |
| 262 finish: | 262 finish: |
| 263 needs: test | 263 needs: test |
| 264 runs-on: ubuntu-latest | 264 runs-on: ubuntu-latest |
| 265 steps: | 265 steps: |
| 266 - name: Coveralls Finished | 266 - name: Coveralls Finished |
| 267 uses: coverallsapp/github-action@master | 267 uses: coverallsapp/github-action@3284643be2c47fb6432518ecec17f1255e8a06a6 # master |
| 268 with: | 268 with: |
| 269 github-token: ${{ secrets.github_token }} | 269 github-token: ${{ secrets.github_token }} |
| 270 parallel-finished: true | 270 parallel-finished: true |