Merge pull request #4160 from Coduz/feat-refactoringJobEngineTests #500
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Security Scan | |
on: | |
push: | |
branches: | |
- 'develop' | |
- 'release-**' | |
env: | |
BUILD_OPTS: "" | |
MAVEN_OPTS: "-Xmx4096m" | |
jobs: | |
# Documentation: https://jeremylong.github.io/DependencyCheck/dependency-check-maven/index.html | |
owasp-dependency-check: | |
name: Owasp Dependency Check | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 # Checks out a copy of the repository on the ubuntu-latest machine | |
- uses: actions/setup-java@v4 | |
with: | |
distribution: 'zulu' | |
java-version: 11 | |
cache: 'maven' | |
- uses: actions/setup-node@v4 # Installs Node and NPM | |
with: | |
node-version: 16 | |
- name: Install Swagger CLI # Installs Swagger CLI to bundle OpenAPI files | |
run: 'npm install -g @apidevtools/swagger-cli' | |
- uses: actions/cache@v4 # Cache local Maven repository to reuse dependencies | |
with: | |
path: ~/.m2/repository | |
key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} | |
restore-keys: | | |
${{ runner.os }}-maven- | |
- run: mvn -B ${BUILD_OPTS} -DskipTests -Psecurity-scan verify |