kyverno/.github/workflows/devcontainer-build.yaml

# yaml-language-server: $schema=https://json.schemastore.org/github-workflow.json

name: Build devcontainer

permissions: {}

on:
  pull_request:
    branches:
      - 'main'
      - 'release*'

concurrency:
  group: ${{ github.workflow }}-${{ github.ref }}
  cancel-in-progress: true

jobs:
  devcontainer-build:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
      - name: Build devcontainer image
        run: docker build .devcontainer   
      - name: Trivy Scan Image
        uses: aquasecurity/trivy-action@595be6a0f6560a0a8fc419ddf630567fc623531d # v0.22.0
        with:
          scan-type: 'fs'
          ignore-unfixed: true
          format: 'sarif'
          output: 'trivy-results.sarif'
          severity: 'CRITICAL,HIGH'
chore: configure gh workflows schemas (#9535) Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> 2024-01-27 23:32:42 +01:00			`# yaml-language-server: $schema=https://json.schemastore.org/github-workflow.json`

feat: adds ci test for building devcontainer image (#8672) * feat: adds ci test for building devcontainer image Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com> * nit: update name of gh action Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com> * feat: tweak on variable Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com> --------- Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com> 2023-10-17 20:11:57 +05:30			`name: Build devcontainer`

			`permissions: {}`

			`on:`
			`pull_request:`
			`branches:`
			`- 'main'`
			`- 'release*'`

			`concurrency:`
			`group: ${{ github.workflow }}-${{ github.ref }}`
			`cancel-in-progress: true`

			`jobs:`
			`devcontainer-build:`
			`runs-on: ubuntu-latest`
			`steps:`
			`- name: Checkout`
chore(deps): bump actions/checkout from 4.1.6 to 4.1.7 (#10447) Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.6 to 4.1.7. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/a5ac7e51b41094c92402da3b24376905380afc29...692973e3d937129bcbf40652eb9f2f61becf3332) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> 2024-06-13 22:40:59 +00:00			`uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7`
feat: adds ci test for building devcontainer image (#8672) * feat: adds ci test for building devcontainer image Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com> * nit: update name of gh action Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com> * feat: tweak on variable Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com> --------- Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com> 2023-10-17 20:11:57 +05:30			`- name: Build devcontainer image`
			`run: docker build .devcontainer`
			`- name: Trivy Scan Image`
chore(deps): bump aquasecurity/trivy-action from 0.21.0 to 0.22.0 (#10410) Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.21.0 to 0.22.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/fd25fed6972e341ff0007ddb61f77e88103953c2...595be6a0f6560a0a8fc419ddf630567fc623531d) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: shuting <shuting@nirmata.com> 2024-06-07 08:26:44 +00:00			`uses: aquasecurity/trivy-action@595be6a0f6560a0a8fc419ddf630567fc623531d # v0.22.0`
feat: adds ci test for building devcontainer image (#8672) * feat: adds ci test for building devcontainer image Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com> * nit: update name of gh action Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com> * feat: tweak on variable Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com> --------- Signed-off-by: Vishal Choudhary <sendtovishalchoudhary@gmail.com> 2023-10-17 20:11:57 +05:30			`with:`
			`scan-type: 'fs'`
			`ignore-unfixed: true`
			`format: 'sarif'`
			`output: 'trivy-results.sarif'`
			`severity: 'CRITICAL,HIGH'`