This is an automated email from the ASF dual-hosted git repository.
dahn pushed a commit to branch 4.17
in repository https://gitbox.apache.org/repos/asf/cloudstack.git
The following commit(s) were added to refs/heads/4.17 by this push:
new b5c5d196660 removed vulnerable workflow
b5c5d196660 is described below
commit b5c5d1966606f8ce37d4c5ced9dbe654e26ffbef
Author: Daan Hoogland <[email protected]>
AuthorDate: Thu Mar 23 16:33:32 2023 +0100
removed vulnerable workflow
---
.github/workflows/coverage-check.yml | 94 ------------------------------------
1 file changed, 94 deletions(-)
diff --git a/.github/workflows/coverage-check.yml
b/.github/workflows/coverage-check.yml
deleted file mode 100644
index 0a51702f11f..00000000000
--- a/.github/workflows/coverage-check.yml
+++ /dev/null
@@ -1,94 +0,0 @@
-# Licensed to the Apache Software Foundation (ASF) under one
-# or more contributor license agreements. See the NOTICE file
-# distributed with this work for additional information
-# regarding copyright ownership. The ASF licenses this file
-# to you under the Apache License, Version 2.0 (the
-# "License"); you may not use this file except in compliance
-# with the License. You may obtain a copy of the License at
-#
-# http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing,
-# software distributed under the License is distributed on an
-# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
-# KIND, either express or implied. See the License for the
-# specific language governing permissions and limitations
-# under the License.
-
-name: PR Quality Check
-
-on: [pull_request_target]
-
-jobs:
- build:
- name: JaCoCo Coverage
- runs-on: ubuntu-latest
- steps:
- - uses: actions/checkout@v3
- with:
- ref: "refs/pull/${{ github.event.number }}/merge"
- fetch-depth: 0
-
- - name: Changed UI Files
- id: ui-changes
- uses: tj-actions/changed-files@a59f800cbb60ed483623848e31be67659a2940f8
- with:
- sha: "${{ github.pull_request.sha }}"
- base_sha: "${{ github.sha }}"
- files: |
- ui/*
-
- - name: Kick UI Build
- uses:
peter-evans/create-or-update-comment@c9fcb64660bc90ec1cc535646af190c992007c32
- if: steps.ui-changes.outputs.any_changed == 'true'
- with:
- token: ${{ secrets.ACS_ROBOT_TOKEN }}
- issue-number: ${{ github.event.pull_request.number }}
- body: |
- Found UI changes, kicking a new UI QA build
- @blueorangutan ui
-
- - name: Changed Java Files
- id: java-changes
- uses: tj-actions/changed-files@a59f800cbb60ed483623848e31be67659a2940f8
- with:
- sha: "${{ github.pull_request.sha }}"
- base_sha: "${{ github.sha }}"
- files: |
- **/*.java
- **/*.xml
-
- - name: Set up JDK11
- uses: actions/setup-java@v3
- if: steps.java-changes.outputs.any_changed == 'true'
- with:
- distribution: 'temurin'
- java-version: '11'
- cache: 'maven'
-
- - name: Cache SonarCloud packages
- uses: actions/cache@v3
- with:
- path: ~/.sonar/cache
- key: ${{ runner.os }}-sonar
- restore-keys: ${{ runner.os }}-sonar
-
- - name: Cache local Maven repository
- uses: actions/cache@v3
- with:
- path: ~/.m2/repository
- key: ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }}
- restore-keys: |
- ${{ runner.os }}-m2
-
- - name: Run Build and Tests with Coverage
- id: coverage
- if: steps.java-changes.outputs.any_changed == 'true'
- env:
- GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
- PR_ID: ${{ github.event.pull_request.number }}
- run: |
- git clone https://github.com/shapeblue/cloudstack-nonoss.git nonoss
- cd nonoss && bash -x install-non-oss.sh && cd ..
- mvn -P quality -Dsimulator -Dnoredist clean install
org.sonarsource.scanner.maven:sonar-maven-plugin:sonar
-Dsonar.projectKey=apache_cloudstack -Dsonar.pullrequest.key=$PR_ID
-Dsonar.pullrequest.branch=${{ github.event.pull_request.head.ref }}
-Dsonar.pullrequest.github.repository=apache/cloudstack
-Dsonar.pullrequest.provider=GitHub
-Dsonar.pullrequest.github.summary_comment=true
