[WIP] Securing EVE Logs #10040
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# NOTE that this is the only workflow that requires access to the | |
# GitHub token. However, it is safe since in EVE repo itself we | |
# only trigger this workflow on pull requests and as such making | |
# it effectively read-only. | |
# yamllint disable rule:line-length | |
# https://docs.github.com/en/free-pro-team@latest/actions/reference/authentication-in-a-workflow#permissions-for-the-github_token | |
# yamllint enable rule:line-length | |
--- | |
name: Apache Yetus | |
on: # yamllint disable-line rule:truthy | |
pull_request: | |
branches: | |
- "master" | |
- "[0-9]+.[0-9]+" | |
- "[0-9]+.[0-9]+-stable" | |
jobs: | |
yetus: | |
runs-on: ubuntu-20.04 | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
with: | |
path: src | |
fetch-depth: 0 | |
- name: Yetus | |
uses: apache/[email protected] | |
with: | |
basedir: ./src | |
buildtool: nobuild | |
continuousimprovement: true | |
githubtoken: ${{ secrets.GITHUB_TOKEN }} | |
patchdir: ./out | |
reviveconfig: .revive.toml | |
- name: Store Yetus artifacts | |
if: ${{ always() }} | |
uses: actions/upload-artifact@v4 | |
with: | |
name: 'yetus-scan' | |
path: ${{ github.workspace }}/out |