mirror of
https://github.com/external-secrets/external-secrets.git
synced 2024-12-14 11:57:59 +00:00
00249f1d43
* Create scorecard.yml Adds a scorecard workflow to regularly check the repo. See docs: https://github.com/marketplace/actions/ossf-scorecard-action#scorecard-badge Signed-off-by: Moritz Johner <moolen@users.noreply.github.com>
40 lines
1.4 KiB
YAML
40 lines
1.4 KiB
YAML
# If someone with write access comments "/ok-to-test-managed" on a pull request, emit a repository_dispatch event
|
|
name: Ok To Test
|
|
|
|
on:
|
|
issue_comment:
|
|
types: [created]
|
|
|
|
permissions:
|
|
contents: read
|
|
|
|
jobs:
|
|
ok-to-test-managed:
|
|
permissions:
|
|
pull-requests: write # for peter-evans/slash-command-dispatch to create PR reaction
|
|
runs-on: ubuntu-latest
|
|
# Only run for PRs, not issue comments
|
|
if: ${{ github.event.issue.pull_request }}
|
|
steps:
|
|
# Generate a GitHub App installation access token from an App ID and private key
|
|
# To create a new GitHub App:
|
|
# https://developer.github.com/apps/building-github-apps/creating-a-github-app/
|
|
# See app.yml for an example app manifest
|
|
- name: Generate token
|
|
id: generate_token
|
|
uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a # v2.1.0
|
|
with:
|
|
app_id: ${{ secrets.APP_ID }}
|
|
private_key: ${{ secrets.PRIVATE_KEY }}
|
|
|
|
- name: Slash Command Dispatch
|
|
uses: peter-evans/slash-command-dispatch@f996d7b7aae9059759ac55e978cff76d91853301 # v3.0.2
|
|
env:
|
|
TOKEN: ${{ steps.generate_token.outputs.token }}
|
|
with:
|
|
token: ${{ env.TOKEN }} # GitHub App installation access token
|
|
# token: ${{ secrets.PERSONAL_ACCESS_TOKEN }} # PAT or OAuth token will also work
|
|
reaction-token: ${{ secrets.GITHUB_TOKEN }}
|
|
issue-type: pull-request
|
|
commands: ok-to-test-managed
|
|
permission: maintain
|