[Dependencies]: Bump stefanzweifel/git-auto-commit-action from 4.16.0 to 5.0.0 #990
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: "PR: Lint" | |
| on: | |
| pull_request: | |
| types: [opened, edited, synchronize, reopened, ready_for_review, unlocked] | |
| branches: | |
| - main | |
| permissions: | |
| contents: read | |
| concurrency: | |
| group: ${{github.workflow}}-${{github.ref}} | |
| cancel-in-progress: true | |
| env: | |
| HEAD_REF: ${{github.head_ref}} | |
| BASE_REF: ${{github.base_ref}} | |
| jobs: | |
| info: | |
| if: ${{endsWith(github.repository, '-template')}} | |
| runs-on: ubuntu-latest | |
| steps: | |
| - run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" | |
| - run: | | |
| echo "Branch: ${{env.HEAD_REF}}" | |
| echo "Base Branch: ${{env.BASE_REF}}" | |
| echo "Repo: ${{github.repository}}" | |
| echo "Owner: ${{github.repository_owner}}" | |
| # include-JIRA-ticket: | |
| # if: github.event.pull_request.draft == false | |
| # runs-on: ubuntu-latest | |
| # steps: | |
| # - run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" | |
| # - uses: actions/checkout@v4 | |
| # with: | |
| # fetch-depth: 0 | |
| # - if: |- | |
| # ${{!endsWith(github.repository, '-template') | |
| # && !startsWith(github.head_ref, 'release/') | |
| # && !startsWith(github.head_ref, 'hotfix/')}} | |
| # uses: seferov/pr-lint-action@v1.2.0 | |
| # with: | |
| # title-regex: '^\[FF\-\d*?\](:)?(\ )' | |
| # error-message: 'Add Jira Ticket ID to your title' | |
| include-changelog-entry: | |
| if: github.event.pull_request.draft == false | |
| runs-on: ubuntu-latest | |
| steps: | |
| - run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" | |
| - if: ${{(github.actor != 'dependabot[bot]' && !endsWith(github.repository , '-template'))}} | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - if: ${{(github.actor != 'dependabot[bot]' && !endsWith(github.repository , '-template'))}} | |
| run: echo "CHANGES=$(git diff --exit-code --no-patch --merge-base origin/main CHANGELOG.md 2> /dev/null && echo 0 || echo $?)" >> "$GITHUB_ENV" | |
| - if: ${{(github.actor != 'dependabot[bot]' && !endsWith(github.repository , '-template')) && env.CHANGES == '0'}} | |
| uses: actions/github-script@v6.4.1 | |
| with: | |
| script: | | |
| core.setFailed('Changelog has not changed') | |
| change-log-entry-is-in-unreleased: | |
| if: github.event.pull_request.draft == false | |
| # As LibGit2Sharp doesn't work on 20.04 | |
| runs-on: ubuntu-latest | |
| steps: | |
| - run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - if: ${{(github.actor != 'dependabot[bot]' && !endsWith(github.repository , '-template'))}} | |
| uses: credfeto/action-dotnet-version-detect@v1.3.0 | |
| with: | |
| file: src/global.json | |
| fallback: 7.0.* | |
| - if: ${{(github.actor != 'dependabot[bot]' && !endsWith(github.repository , '-template'))}} | |
| uses: actions/setup-dotnet@v3.2.0 | |
| env: | |
| GITHUB_TOKEN: ${{secrets.SOURCE_PUSH_TOKEN}} | |
| DDOTNET_ROOT: "${{github.workspace}}/.dotnet/${{github.sha}}-${{github.run_id}}-${{github.run_number}}-${{github.run_attempt}}" | |
| DOTNET_INSTALL_DIR: "${{github.workspace}}/.dotnet/${{github.sha}}-${{github.run_id}}-${{github.run_number}}-${{github.run_attempt}}" | |
| DOTNET_MULTILEVEL_LOOKUP: "false" | |
| DOTNET_NOLOGO: "true" | |
| DOTNET_PRINT_TELEMETRY_MESSAGE: "false" | |
| DOTNET_ReadyToRun: "0" | |
| DOTNET_TC_QuickJitForLoops: "1" | |
| DOTNET_TieredPGO: "1" | |
| with: | |
| dotnet-version: | | |
| 6.0.* | |
| 7.0.* | |
| ${{env.DOTNET_VERSION}} | |
| - if: ${{(github.actor != 'dependabot[bot]' && !endsWith(github.repository , '-template'))}} | |
| name: Enable dotnet tools | |
| run: dotnet new tool-manifest | |
| env: | |
| DDOTNET_ROOT: "${{github.workspace}}/.dotnet/${{github.sha}}-${{github.run_id}}-${{github.run_number}}-${{github.run_attempt}}" | |
| DOTNET_INSTALL_DIR: "${{github.workspace}}/.dotnet/${{github.sha}}-${{github.run_id}}-${{github.run_number}}-${{github.run_attempt}}" | |
| DOTNET_MULTILEVEL_LOOKUP: "false" | |
| DOTNET_NOLOGO: "true" | |
| DOTNET_PRINT_TELEMETRY_MESSAGE: "false" | |
| DOTNET_ReadyToRun: "0" | |
| DOTNET_TC_QuickJitForLoops: "1" | |
| DOTNET_TieredPGO: "1" | |
| - if: ${{(github.actor != 'dependabot[bot]' && !endsWith(github.repository , '-template'))}} | |
| name: Install Changelog tool | |
| run: dotnet tool install --local Credfeto.ChangeLog.Cmd | |
| env: | |
| DDOTNET_ROOT: "${{github.workspace}}/.dotnet/${{github.sha}}-${{github.run_id}}-${{github.run_number}}-${{github.run_attempt}}" | |
| DOTNET_INSTALL_DIR: "${{github.workspace}}/.dotnet/${{github.sha}}-${{github.run_id}}-${{github.run_number}}-${{github.run_attempt}}" | |
| DOTNET_MULTILEVEL_LOOKUP: "false" | |
| DOTNET_NOLOGO: "true" | |
| DOTNET_PRINT_TELEMETRY_MESSAGE: "false" | |
| DOTNET_ReadyToRun: "0" | |
| DOTNET_TC_QuickJitForLoops: "1" | |
| DOTNET_TieredPGO: "1" | |
| - if: ${{(github.actor != 'dependabot[bot]' && !endsWith(github.repository , '-template'))}} | |
| name: Check Changelog | |
| run: dotnet changelog --changelog CHANGELOG.md --check-insert "origin/${{github.base_ref}}" | |
| env: | |
| DDOTNET_ROOT: "${{github.workspace}}/.dotnet/${{github.sha}}-${{github.run_id}}-${{github.run_number}}-${{github.run_attempt}}" | |
| DOTNET_INSTALL_DIR: "${{github.workspace}}/.dotnet/${{github.sha}}-${{github.run_id}}-${{github.run_number}}-${{github.run_attempt}}" | |
| DOTNET_MULTILEVEL_LOOKUP: "false" | |
| DOTNET_NOLOGO: "true" | |
| DOTNET_PRINT_TELEMETRY_MESSAGE: "false" | |
| DOTNET_ReadyToRun: "0" | |
| DOTNET_TC_QuickJitForLoops: "1" | |
| DOTNET_TieredPGO: "1" | |
| does-not-contain-secrets: | |
| if: github.event.pull_request.draft == false | |
| runs-on: ubuntu-latest | |
| steps: | |
| - run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - uses: DariuszPorowski/github-action-gitleaks@v2.0.9 | |
| id: gitleaks | |
| with: | |
| config: .gitleaks.toml | |
| report_format: "sarif" | |
| fail: true | |
| redact: true | |
| verbose: true | |
| log_level: info | |
| has-no-merge-conflicts: | |
| if: github.event.pull_request.draft == false | |
| runs-on: ubuntu-latest | |
| steps: | |
| - run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - uses: olivernybroe/action-conflict-finder@v4.0 | |
| has-no-file-or-folder-case-sensitivity-issues: | |
| if: github.event.pull_request.draft == false | |
| runs-on: ubuntu-latest | |
| steps: | |
| - run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - uses: credfeto/action-case-checker@v1.3.0 | |
| no-ignored-files: | |
| if: github.event.pull_request.draft == false | |
| runs-on: ubuntu-latest | |
| steps: | |
| - run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - uses: credfeto/action-no-ignored-files@v1.2.0 | |
| dependency-review: | |
| # Check that there are no dependencies with security problems in the PR | |
| if: github.event.pull_request.draft == false | |
| runs-on: ubuntu-latest | |
| steps: | |
| - run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" | |
| - uses: credfeto/action-repo-visibility@v1.2.0 | |
| id: visibility | |
| with: | |
| # optional parameter defaults to the current repo | |
| repository: ${{github.repository}} | |
| # optional parameter defaults to the current user | |
| token: ${{github.token}} | |
| - if: ${{steps.visibility.outputs.is_public == 'true'}} | |
| name: 'Checkout Repository' | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - if: ${{steps.visibility.outputs.is_public == 'true'}} | |
| name: 'Dependency Review' | |
| uses: actions/dependency-review-action@v3.1.0 | |
| no-merge-commits: | |
| # Check that there are no merge commits in the PR | |
| if: github.event.pull_request.draft == false | |
| runs-on: ubuntu-latest | |
| steps: | |
| - run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - uses: greenled/no-merge-commits-check@v1.0.1 | |
| lint-code: | |
| if: ${{github.event.pull_request.draft == false && ( !startsWith(github.head_ref, 'release/') && !startsWith(github.head_ref, 'hotfix/') )}} | |
| runs-on: ubuntu-latest | |
| steps: | |
| - run: sudo chown -R "$USER:$USER" "$GITHUB_WORKSPACE" | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - uses: github/super-linter@v5.0.0 | |
| env: | |
| DEFAULT_BRANCH: main | |
| GITHUB_TOKEN: ${{secrets.SOURCE_PUSH_TOKEN}} | |
| MULTI_STATUS: true | |
| VALIDATE_ALL_CODEBASE: false | |
| VALIDATE_ANSIBLE: true | |
| VALIDATE_BASH: true | |
| VALIDATE_CSS: true | |
| VALIDATE_ENV: true | |
| VALIDATE_DOCKERFILE: true | |
| VALIDATE_DOCKERFILE_HADOLINT: true | |
| VALIDATE_GITHUB_ACTIONS: true | |
| VALIDATE_JSON: true | |
| VALIDATE_MD: true | |
| VALIDATE_POWERSHELL: true | |
| VALIDATE_PYTHON: true | |
| VALIDATE_PYTHON_PYLINT: true | |
| VALIDATE_SQL: true | |
| VALIDATE_TYPESCRIPT_ES: true | |
| VALIDATE_XML: true | |
| VALIDATE_YAML: true | |