mirror of
https://github.com/ghndrx/prowler.git
synced 2026-02-10 06:45:08 +00:00
59 lines
1.7 KiB
YAML
59 lines
1.7 KiB
YAML
name: pr-lint-test
|
|
|
|
on:
|
|
push:
|
|
branches:
|
|
- "master"
|
|
pull_request:
|
|
branches:
|
|
- "master"
|
|
|
|
jobs:
|
|
build:
|
|
runs-on: ubuntu-latest
|
|
strategy:
|
|
matrix:
|
|
python-version: ["3.9"]
|
|
|
|
steps:
|
|
- uses: actions/checkout@v3
|
|
- name: Set up Python ${{ matrix.python-version }}
|
|
uses: actions/setup-python@v4
|
|
with:
|
|
python-version: ${{ matrix.python-version }}
|
|
- name: Install dependencies
|
|
run: |
|
|
python -m pip install --upgrade pip
|
|
pip install pipenv
|
|
pipenv install --dev
|
|
pipenv run pip list
|
|
VERSION=$(curl --silent "https://api.github.com/repos/hadolint/hadolint/releases/latest" | \
|
|
grep '"tag_name":' | \
|
|
sed -E 's/.*"v([^"]+)".*/\1/' \
|
|
) && curl -L -o /tmp/hadolint "https://github.com/hadolint/hadolint/releases/download/v${VERSION}/hadolint-Linux-x86_64" \
|
|
&& chmod +x /tmp/hadolint
|
|
- name: Lint with flake8
|
|
run: |
|
|
pipenv run flake8 . --ignore=E266,W503,E203,E501,W605,E128 --exclude contrib
|
|
- name: Checking format with black
|
|
run: |
|
|
pipenv run black --check .
|
|
- name: Lint with pylint
|
|
run: |
|
|
pipenv run pylint --disable=W,C,R,E -j 0 -rn -sn prowler/
|
|
- name: Bandit
|
|
run: |
|
|
pipenv run bandit -q -lll -x '*_test.py,./contrib/' -r .
|
|
- name: Safety
|
|
run: |
|
|
pipenv run safety check
|
|
- name: Vulture
|
|
run: |
|
|
pipenv run vulture --exclude "contrib" --min-confidence 100 .
|
|
- name: Hadolint
|
|
run: |
|
|
/tmp/hadolint Dockerfile --ignore=DL3013
|
|
- name: Test with pytest
|
|
run: |
|
|
pipenv run pytest tests -n auto
|