From 426bb8f5dde3986f90baafad87ebc4907ad1d8bd Mon Sep 17 00:00:00 2001 From: Eguzki Astiz Lezaun Date: Wed, 21 Aug 2024 17:54:38 +0200 Subject: [PATCH] gh action: license scan by fossa Signed-off-by: Eguzki Astiz Lezaun --- .github/workflows/license-scan.yaml | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) create mode 100644 .github/workflows/license-scan.yaml diff --git a/.github/workflows/license-scan.yaml b/.github/workflows/license-scan.yaml new file mode 100644 index 00000000..f889b429 --- /dev/null +++ b/.github/workflows/license-scan.yaml @@ -0,0 +1,29 @@ +--- +name: License Scan + +on: + push: + branches: + - 'main' + pull_request: + branches: + - '*' + +jobs: + fossa-scan: + name: Find license compliance and security issues + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + - uses: fossas/fossa-action@v1.4.0 + name: License Scan + with: + api-key: ${{secrets.FOSSA_API_TOKEN}} + branch: ${{ github.head_ref || github.ref_name }} + project: git+github.com/Kuadrant/limitador + - uses: fossas/fossa-action@v1.4.0 + name: License test for issues + with: + api-key: ${{secrets.FOSSA_API_TOKEN}} + run-tests: true + project: git+github.com/Kuadrant/limitador