diff --git a/.github/workflows/ac-bandit.yml b/.github/workflows/ac-bandit.yml new file mode 100644 index 000000000..288fb92b1 --- /dev/null +++ b/.github/workflows/ac-bandit.yml @@ -0,0 +1,38 @@ +name: AC Bandit + +on: + pull_request: + branches: + - dev + - staging* + +jobs: + bandit: + runs-on: ubuntu-latest + + steps: + - name: Checkout repository + uses: actions/checkout@v4 + + - name: Set up Python + uses: actions/setup-python@v5 + with: + python-version: 3.11 + + - name: Set up venv + run: | + python -m pip install --upgrade pip + pip install virtualenv + mkdir venv + virtualenv venv/venv-2.16 + + - name: Install dependencies + run: | + source venv/venv-2.16/bin/activate + python -m pip install --upgrade pip + pip install bandit + + - name: Run ac-bandit + run: | + source venv/venv-2.16/bin/activate + ./ac --ac-bandit --level l diff --git a/.github/workflows/changelog-track.yml b/.github/workflows/changelog-track.yml new file mode 100644 index 000000000..b998d33e6 --- /dev/null +++ b/.github/workflows/changelog-track.yml @@ -0,0 +1,47 @@ +name: New Changelog file + +on: + pull_request: + +jobs: + check-changelog: + permissions: + contents: read + runs-on: ubuntu-latest + env: + branch_name: ${{ github.event.pull_request.head.ref }} + steps: + - name: Checkout + uses: actions/checkout@v4 + with: + ref: ${{ github.event.pull_request.base.ref }} + + - name: ls base + run: | + cd changelogs/fragments/ + { + echo "LS_BASE<<\n" + ls + echo "\n" + } >> "$GITHUB_ENV" + + - name: Merge Changelogs + run: | + date > generated.txt + git config user.name github-actions + git config user.email github-actions@github.com + git fetch + git checkout origin/"$branch_name" changelogs/fragments/ + + - name: ls all + run: | + cd changelogs/fragments/ + { + echo "LS_ALL<<\n" + ls + echo "\n" + } >> "$GITHUB_ENV" + + - name: Check for new file + run: | + [ "${#LS_ALL}" -gt "${#LS_BASE}" ] || (echo "No new changelog file was found" && exit 1)