Compare commits
8 Commits
1.0.0
...
renovate/a
| Author | SHA1 | Date | |
|---|---|---|---|
| 728bae9120 | |||
2ae472fd70
|
|||
|
bff92f363b
|
|||
|
5eefad3bfc
|
|||
|
fcc9ac5d86
|
|||
|
3512ce520d
|
|||
|
c5017145ca
|
|||
|
6daafc6841
|
@@ -21,7 +21,7 @@ jobs:
|
||||
|
||||
steps:
|
||||
- name: Checkout
|
||||
uses: actions/checkout@v4
|
||||
uses: actions/checkout@v6
|
||||
- name: Set up QEMU
|
||||
uses: docker/setup-qemu-action@v3
|
||||
- name: Set up Docker Buildx
|
||||
|
||||
28
.gitea/workflows/cog-check.yml
Normal file
28
.gitea/workflows/cog-check.yml
Normal file
@@ -0,0 +1,28 @@
|
||||
---
|
||||
name: Cog check
|
||||
on:
|
||||
pull_request:
|
||||
workflow_call:
|
||||
# inputs:
|
||||
# check-latest-tag-only:
|
||||
# type: boolean
|
||||
# required: false
|
||||
# default: true
|
||||
|
||||
jobs:
|
||||
release:
|
||||
name: Create release
|
||||
runs-on: ubuntu-latest
|
||||
|
||||
steps:
|
||||
- uses: actions/checkout@v6
|
||||
with:
|
||||
fetch-depth: 0
|
||||
|
||||
- name: Semver release
|
||||
uses: cocogitto/cocogitto-action@v3
|
||||
with:
|
||||
# check-latest-tag-only: ${{ inputs.check-latest-tag-only }}
|
||||
check-latest-tag-only: true
|
||||
git-user: "gitea-bot"
|
||||
git-user-email: "bot@git.palkoi.net"
|
||||
@@ -1,6 +1,15 @@
|
||||
name: Release
|
||||
---
|
||||
name: Cog release
|
||||
on:
|
||||
push:
|
||||
branches:
|
||||
- main
|
||||
workflow_call:
|
||||
# inputs:
|
||||
# check-latest-tag-only:
|
||||
# type: boolean
|
||||
# required: false
|
||||
# default: true
|
||||
|
||||
jobs:
|
||||
release:
|
||||
@@ -8,7 +17,7 @@ jobs:
|
||||
runs-on: ubuntu-latest
|
||||
|
||||
steps:
|
||||
- uses: actions/checkout@v4
|
||||
- uses: actions/checkout@v6
|
||||
with:
|
||||
fetch-depth: 0
|
||||
|
||||
@@ -26,6 +35,7 @@ jobs:
|
||||
git-user: "gitea-bot"
|
||||
git-user-email: "bot@git.palkoi.net"
|
||||
check-latest-tag-only: true
|
||||
# check-latest-tag-only: ${{ inputs.check-latest-tag-only }}
|
||||
|
||||
- name: Generate Changelog
|
||||
run: cog changelog --at ${{ steps.release.outputs.version }} -t full_hash > GITHUB_CHANGELOG.md
|
||||
@@ -27,7 +27,7 @@ jobs:
|
||||
|
||||
steps:
|
||||
- name: Clone repo
|
||||
uses: actions/checkout@v4
|
||||
uses: actions/checkout@v6
|
||||
- name: Retrieve artifacts
|
||||
id: download
|
||||
uses: actions/download-artifact@v3
|
||||
@@ -42,7 +42,7 @@ jobs:
|
||||
exit "$(cat exitcode)";
|
||||
fi
|
||||
- name: Clone blackbox repo
|
||||
uses: actions/checkout@v4
|
||||
uses: actions/checkout@v6
|
||||
if: ${{ steps.check.outputs.code == 2 }}
|
||||
with:
|
||||
repository: xaked/blackbox
|
||||
|
||||
@@ -31,9 +31,9 @@ jobs:
|
||||
tofu_version: ${{ inputs.tofu-version }}
|
||||
cli_config_credentials_token: ${{ secrets.tf-api-token }}
|
||||
- name: Clone repo
|
||||
uses: actions/checkout@v4
|
||||
uses: actions/checkout@v6
|
||||
- name: Clone blackbox repo
|
||||
uses: actions/checkout@v4
|
||||
uses: actions/checkout@v6
|
||||
with:
|
||||
repository: xaked/blackbox
|
||||
path: blackbox
|
||||
|
||||
@@ -13,7 +13,7 @@ jobs:
|
||||
|
||||
steps:
|
||||
- name: Clone blackbox repo
|
||||
uses: actions/checkout@v4
|
||||
uses: actions/checkout@v6
|
||||
with:
|
||||
repository: xaked/blackbox
|
||||
path: blackbox
|
||||
|
||||
@@ -9,7 +9,7 @@ jobs:
|
||||
|
||||
steps:
|
||||
- name: Clone repo
|
||||
uses: actions/checkout@v4
|
||||
uses: actions/checkout@v6
|
||||
- name: Run Trivy vulnerability scanner in IaC mode (LOW/MED)
|
||||
uses: aquasecurity/trivy-action@master
|
||||
with:
|
||||
|
||||
@@ -43,7 +43,7 @@ jobs:
|
||||
steps:
|
||||
# Git Checkout
|
||||
- name: Checkout Code
|
||||
uses: actions/checkout@v4
|
||||
uses: actions/checkout@v6
|
||||
with:
|
||||
token: ${{ secrets.gitea-token }}
|
||||
fetch-depth: 0 # If you use VALIDATE_ALL_CODEBASE = true, you can remove this line to improve performances
|
||||
|
||||
@@ -22,7 +22,7 @@ jobs:
|
||||
|
||||
steps:
|
||||
- name: Clone repo
|
||||
uses: actions/checkout@v4
|
||||
uses: actions/checkout@v6
|
||||
- name: Retrieve artifacts
|
||||
id: download
|
||||
uses: actions/download-artifact@v3
|
||||
@@ -37,7 +37,7 @@ jobs:
|
||||
exit "$(cat exitcode)";
|
||||
fi
|
||||
- name: Clone blackbox repo
|
||||
uses: actions/checkout@v4
|
||||
uses: actions/checkout@v6
|
||||
if: ${{ steps.check.outputs.code == 2 }}
|
||||
with:
|
||||
repository: xaked/blackbox
|
||||
|
||||
@@ -8,7 +8,7 @@ jobs:
|
||||
runs-on: ubuntu-latest
|
||||
|
||||
steps:
|
||||
- uses: actions/checkout@v4
|
||||
- uses: actions/checkout@v6
|
||||
with:
|
||||
ref: ${{ github.event.pull_request.head.ref }}
|
||||
- name: Install terraform docs
|
||||
|
||||
@@ -26,9 +26,9 @@ jobs:
|
||||
terraform_version: 1.7.5
|
||||
cli_config_credentials_token: ${{ secrets.tf-api-token }}
|
||||
- name: Clone repo
|
||||
uses: actions/checkout@v4
|
||||
uses: actions/checkout@v6
|
||||
- name: Clone blackbox repo
|
||||
uses: actions/checkout@v4
|
||||
uses: actions/checkout@v6
|
||||
with:
|
||||
repository: xaked/blackbox
|
||||
path: blackbox
|
||||
|
||||
12
cog.toml
Normal file
12
cog.toml
Normal file
@@ -0,0 +1,12 @@
|
||||
# [packages]
|
||||
# build-docker-image = { path = ".gitea/workflows/build-docker-image.yml" }
|
||||
# cog-check = { path = ".gitea/workflows/cog-check.yml" }
|
||||
# cog-release = { path = ".gitea/workflows/cog-release.yml" }
|
||||
# otf-apply = { path = ".gitea/workflows/otf-apply.yml" }
|
||||
# otf-plan = { path = ".gitea/workflows/otf-plan.yml" }
|
||||
# sec-blackbox-decrypt = { path = ".gitea/workflows/sec-blackbox-decrypt.yml" }
|
||||
# sec-checks-trivy = { path = ".gitea/workflows/sec-checks-trivy.yml" }
|
||||
# sec-megalinter = { path = ".gitea/workflows/sec-megalinter.yml" }
|
||||
# tf-apply = { path = ".gitea/workflows/tf-apply.yml" }
|
||||
# tf-docs = { path = ".gitea/workflows/tf-docs.yml" }
|
||||
# tf-plan = { path = ".gitea/workflows/tf-plan.yml" }
|
||||
Reference in New Issue
Block a user