Sha256: 1a65266e4d1402ce203307e3c05f2e2fdb6005151f4081199cbb7a3da28a79f5

Contents?: true

Size: 1.25 KB

Versions: 3

Compression:

Stored size: 1.25 KB

Contents

name: Ruby and Javascript dependency scans

on:
  push:
    branches: [ main ]
    paths-ignore:
      - 'doc/**'
      - 'README.md'
  pull_request:
    branches: [ main ]
  schedule:
    # cron format: 'minute hour dayofmonth month dayofweek'
    # this will run at noon UTC every day (7am EST / 8am EDT)
    - cron: '0 12 * * *'

jobs:
  bundle-audit:
    name: Bundle audit
    runs-on: ubuntu-latest

    steps:
      - uses: actions/checkout@v2

      - uses: ./.github/actions/setup-languages

      - name: Update advisory database and run checks
        run: bundle exec rake bundler:audit

  yarn-audit:
    name: Yarn audit
    runs-on: ubuntu-latest

    steps:
      - uses: actions/checkout@v2

      - uses: ./.github/actions/setup-languages

      - name: Run yarn audit
        run: bundle exec rake yarn:audit

  ruby-bom:
    name: Ruby SBOM Generation
    runs-on: ubuntu-latest

    steps:
      - uses: actions/checkout@v2
      - uses: ./.github/actions/setup-languages
      - name: Install cyclonedx
        run: gem install cyclonedx-ruby
      - name: Generate BOM
        run: cyclonedx-ruby -p . -o ruby_bom.xml
      - name: Save BOM
        uses: actions/upload-artifact@v3
        with:
          name: ruby-bom
          path: ./ruby_bom.xml

Version data entries

3 entries across 3 versions & 1 rubygems

Version Path
rails_template_18f-0.8.2 lib/generators/rails_template18f/github_actions/templates/github/workflows/dependency-scans.yml
rails_template_18f-0.8.1 lib/generators/rails_template18f/github_actions/templates/github/workflows/dependency-scans.yml
rails_template_18f-0.8.0 lib/generators/rails_template18f/github_actions/templates/github/workflows/dependency-scans.yml