diff --git a/.github/workflows/build-docker-image.yml b/.github/workflows/build-docker-image.yml index 553ae5d10..a15a023d9 100644 --- a/.github/workflows/build-docker-image.yml +++ b/.github/workflows/build-docker-image.yml @@ -1,3 +1,17 @@ +# Copyright © 2023 OpenIM open source community. All rights reserved. +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + name: OpenIM Build Docker Images on: push: diff --git a/.github/workflows/e2e-test.yml b/.github/workflows/e2e-test.yml index e69de29bb..6b9f79d51 100644 --- a/.github/workflows/e2e-test.yml +++ b/.github/workflows/e2e-test.yml @@ -0,0 +1,2 @@ + +# name: OpenIM e2e Test \ No newline at end of file diff --git a/.github/workflows/golangci-link.yml b/.github/workflows/golangci-link.yml index f3664c1bc..c740afff7 100644 --- a/.github/workflows/golangci-link.yml +++ b/.github/workflows/golangci-link.yml @@ -13,7 +13,7 @@ # limitations under the License. -name: OpenKF golangci-lint +name: OpenIM golangci-lint on: push: branches: [main] diff --git a/.github/workflows/gosec.yml b/.github/workflows/gosec.yml index 60f42ae1e..f6ddcedab 100644 --- a/.github/workflows/gosec.yml +++ b/.github/workflows/gosec.yml @@ -1,30 +1,30 @@ -# name: Run gosec +name: OpenIM Run Gosec -# # gosec is a source code security audit tool for the Go language. It performs a static -# # analysis of the Go code, looking for potential security problems. The main functions of gosec are: -# # 1. Find common security vulnerabilities, such as SQL injection, command injection, and cross-site scripting (XSS). -# # 2. Audit codes according to common security standards and find non-standard codes. -# # 3. Assist the Go language engineer to write safe and reliable code. +# gosec is a source code security audit tool for the Go language. It performs a static +# analysis of the Go code, looking for potential security problems. The main functions of gosec are: +# 1. Find common security vulnerabilities, such as SQL injection, command injection, and cross-site scripting (XSS). +# 2. Audit codes according to common security standards and find non-standard codes. +# 3. Assist the Go language engineer to write safe and reliable code. -# on: -# push: -# branches: "*" -# pull_request: -# branches: "*" -# paths-ignore: -# - '*.md' -# - '*.yml' -# - '.github' +on: + push: + branches: "*" + pull_request: + branches: "*" + paths-ignore: + - '*.md' + - '*.yml' + - '.github' -# jobs: -# golang-security-action: -# runs-on: ubuntu-latest -# env: -# GO111MODULE: on -# steps: -# - name: Check out code -# uses: actions/checkout@v3 -# - name: Run Gosec Security Scanner -# uses: securego/gosec@master -# with: -# args: ./... \ No newline at end of file +jobs: + golang-security-action: + runs-on: ubuntu-latest + env: + GO111MODULE: on + steps: + - name: Check out code + uses: actions/checkout@v3 + - name: Run Gosec Security Scanner + uses: securego/gosec@master + with: + args: ./... \ No newline at end of file diff --git a/.github/workflows/grype.yml b/.github/workflows/grype.yml new file mode 100644 index 000000000..5931ff324 --- /dev/null +++ b/.github/workflows/grype.yml @@ -0,0 +1,24 @@ +name: OpenIM Grype + +on: + push: + branches: ['main'] + tags: ['v*'] + pull_request: + +jobs: + scan-source: + name: scan-source + runs-on: ubuntu-latest + + permissions: + security-events: write + actions: read + contents: read + + steps: + - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3 + - uses: anchore/scan-action@v3 + with: + path: "." + fail-build: true \ No newline at end of file diff --git a/.github/workflows/image.yml b/.github/workflows/image.yml index f6d02cf63..2ecfad6ea 100644 --- a/.github/workflows/image.yml +++ b/.github/workflows/image.yml @@ -1,3 +1,17 @@ +# Copyright © 2023 OpenIM open source community. All rights reserved. +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + name: Build Image on: diff --git a/.github/workflows/openimci.yml b/.github/workflows/openimci.yml index 2632b7d15..e0546515e 100644 --- a/.github/workflows/openimci.yml +++ b/.github/workflows/openimci.yml @@ -12,7 +12,7 @@ # See the License for the specific language governing permissions and # limitations under the License. -name: OpenIM CI +name: OpenIM CI Aotu Build and Install on: push: diff --git a/.github/workflows/project-progress.yml b/.github/workflows/project-progress.yml index ad721a361..12e8615f4 100644 --- a/.github/workflows/project-progress.yml +++ b/.github/workflows/project-progress.yml @@ -1,3 +1,17 @@ +# Copyright © 2023 OpenIM open source community. All rights reserved. +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. + # GitHub recommends pinning actions to a commit SHA. # To get a newer version, you will need to update the SHA. # You can also reference a tag or branch, but the action may change without warning. diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index d5760e2d2..c4f190766 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -1,4 +1,4 @@ -name: OpenIM Server release +name: OpenIM Server Release on: push: