forked from IBM/detect-secrets
-
Notifications
You must be signed in to change notification settings - Fork 0
/
.travis.yml
35 lines (35 loc) · 1.08 KB
/
.travis.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
language: python
dist: focal
git:
depth: false
services:
- docker
addons:
ssh_known_hosts: github.ibm.com
deploy:
- provider: script
script: >-
set -e; make docker-build-images docker-test-images docker-quality-images deploy
on:
all_branches: true
# only build docker image and push once
condition: $TOXENV = py38
# only deploy when pushing to gh repo
repo: IBM/detect-secrets
matrix:
include:
- env: TOXENV=py38
python: 3.8.18
- env: TOXENV=py39
python: 3.9.18
before_install:
- echo -e "machine github.com\n login $GH_ACCESS_TOKEN" >> ~/.netrc # Login to GitHub
- echo -e "machine github.ibm.com\n login $GHE_ACCESS_TOKEN" >> ~/.netrc # Login to GitHub Enterprise
install:
- pip install "certifi>=2022.12.07" "setuptools>=65.5.1" tox pipenv
script: make setup-trivy && make setup-cosign && make trivy-scan-python-vulnerabilities && make test
cache:
directories:
- $HOME/.cache/pre-commit
- $HOME/.cache/trivy
- $HOME/.cache/cosign