-
Notifications
You must be signed in to change notification settings - Fork 5
130 lines (107 loc) · 3.67 KB
/
run.yml
File metadata and controls
130 lines (107 loc) · 3.67 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
name: Run
on:
workflow_call:
permissions:
contents: read
jobs:
test-cygwin:
runs-on: windows-latest
permissions:
contents: read
security-events: write
steps:
- name: Harden the runner (Audit all outbound calls)
uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
with:
egress-policy: audit
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
- uses: cygwin/cygwin-install-action@4ef15ca7fd18a18f1000989fcfd968e06d146ce8 # master
- name: Install Subversion (SVN) on Windows
run: |
choco install svn -y
$env:PATH = "C:\Program Files (x86)\Subversion\bin;$env:PATH"
echo "C:\Program Files (x86)\Subversion\bin" >> $env:GITHUB_PATH
svn --version # Verify installation
- name: Install Zig (Windows)
run: choco install zig --version=0.15.2 -y
- name: Install dfetch
run: pip install .
- run: dfetch environment
- run: dfetch environment
- run: dfetch add https://github.com/dfetch-org/test-repo
- run: dfetch validate
- run: dfetch check
- run: dfetch update
- run: dfetch update
- run: dfetch update-patch
- run: dfetch format-patch
- run: dfetch report -t sbom
- run: dfetch remove test-repo
- name: Dfetch SARIF Check
uses: ./
with:
working-directory: '.'
- name: Run example
working-directory: ./example
env:
CI: 'false'
run: |
dfetch update
dfetch update
dfetch report
run:
strategy:
matrix:
platform: [ubuntu-latest, macos-latest, windows-latest]
python-version: ['3.10', '3.11', '3.12', '3.13', '3.14']
runs-on: ${{ matrix.platform }}
permissions:
contents: read
security-events: write
steps:
- name: Harden the runner (Audit all outbound calls)
uses: step-security/harden-runner@8d3c67de8e2fe68ef647c8db1e6a09f647780f40 # v2.19.0
with:
egress-policy: audit
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
- name: Setup Python
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
with:
python-version: ${{ matrix.python-version }}
- name: Install Subversion (SVN)
if: matrix.platform == 'ubuntu-latest'
run: |
sudo apt-get update
sudo apt-get install -y subversion
svn --version # Verify installation
- name: Install Subversion (SVN)
if: matrix.platform == 'macos-latest'
run: |
brew install svn
svn --version # Verify installation
- name: Install Subversion (SVN)
if: matrix.platform == 'windows-latest'
run: |
choco install svn -y
$env:PATH = "C:\Program Files (x86)\Subversion\bin;$env:PATH"
echo "C:\Program Files (x86)\Subversion\bin" >> $env:GITHUB_PATH
svn --version # Verify installation
- name: Install Zig (Windows)
if: runner.os == 'Windows'
run: choco install zig --version=0.15.2 -y
- name: Install dfetch
run: pip install .
- run: dfetch environment
- run: dfetch add https://github.com/dfetch-org/test-repo
- run: dfetch validate
- run: dfetch check
- run: dfetch update
- run: dfetch update
- run: dfetch update-patch
- run: dfetch format-patch
- run: dfetch report -t sbom
- run: dfetch remove test-repo
- name: Dfetch SARIF Check
uses: ./
with:
working-directory: '.'