Update upstream source from tag 'upstream/1.4.0'

Update to upstream version '1.4.0' with Debian dir 64889867df57bd13ea0cb964223697d378d391ce
author: Colin Watson <cjwatson@debian.org> 2020-04-17 20:57:34 +0100
committer: Colin Watson <cjwatson@debian.org> 2020-04-18 09:48:21 +0100
commit: df7226c4b684fd229dc046388225c69ded877721 (patch)
tree: e69014e1ee868c4ec178b8a36baae7de31786beb /.github/workflows/scan.yml
parent: f794345c2d734f593da8ed7754e5dbb5809c688d (diff)
parent: 75073d0a8478441cc97a6efa10b566c5fb1dac81 (diff)
1 files changed, 36 insertions, 0 deletions
diff --git a/.github/workflows/scan.yml b/.github/workflows/scan.yml
new file mode 100644
index 0000000..008961b
--- /dev/null
+++ b/.github/workflows/scan.yml
@@ -0,0 +1,36 @@
+name: static code analysis
+on:
+  push:
+  schedule:
+    - cron: '0 0 * * 1'
+env:
+  SCAN_IMG:
+    yes-docker-local.artifactory.in.yubico.org/static-code-analysis/c:v1
+  SECRET: ${{ secrets.ARTIFACTORY_READER_TOKEN }}
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@master
+    - name: Scan but do not fail on warnings
+      run: |
+        if [ "${SECRET}" != "" ]; then
+          docker login yes-docker-local.artifactory.in.yubico.org/ \
+             -u svc-static-code-analysis-reader \
+             -p ${{ secrets.ARTIFACTORY_READER_TOKEN }}
+          docker pull ${SCAN_IMG}
+          docker run -v${PWD}:/k -e COMPILE_DEPS="${COMPILE_DEPS}" \
+             -e PROJECT_NAME=${GITHUB_REPOSITORY#Yubico/} -t ${SCAN_IMG}
+        fi
+      continue-on-error: true
+    - uses: actions/upload-artifact@master
+      if: failure()
+      with:
+        name: suppression_files
+        path: suppression_files
author	Colin Watson <cjwatson@debian.org>	2020-04-17 20:57:34 +0100
committer	Colin Watson <cjwatson@debian.org>	2020-04-18 09:48:21 +0100
commit	df7226c4b684fd229dc046388225c69ded877721 (patch)
tree	e69014e1ee868c4ec178b8a36baae7de31786beb /.github/workflows/scan.yml
parent	f794345c2d734f593da8ed7754e5dbb5809c688d (diff)
parent	75073d0a8478441cc97a6efa10b566c5fb1dac81 (diff)

diff --git a/.github/workflows/scan.yml b/.github/workflows/scan.yml new file mode 100644 index 0000000..008961b --- /dev/null +++ b/.github/workflows/scan.yml
@@ -0,0 +1,36 @@
	1	name: static code analysis
	2
	3	on:
	4	push:
	5	schedule:
	6	- cron: '0 0 * * 1'
	7
	8	env:
	9	SCAN_IMG:
	10	yes-docker-local.artifactory.in.yubico.org/static-code-analysis/c:v1
	11	SECRET: ${{ secrets.ARTIFACTORY_READER_TOKEN }}
	12
	13	jobs:
	14	build:
	15	runs-on: ubuntu-latest
	16
	17	steps:
	18	- uses: actions/checkout@master
	19
	20	- name: Scan but do not fail on warnings
	21	run: \|
	22	if [ "${SECRET}" != "" ]; then
	23	docker login yes-docker-local.artifactory.in.yubico.org/ \
	24	-u svc-static-code-analysis-reader \
	25	-p ${{ secrets.ARTIFACTORY_READER_TOKEN }}
	26	docker pull ${SCAN_IMG}
	27	docker run -v${PWD}:/k -e COMPILE_DEPS="${COMPILE_DEPS}" \
	28	-e PROJECT_NAME=${GITHUB_REPOSITORY#Yubico/} -t ${SCAN_IMG}
	29	fi
	30	continue-on-error: true
	31
	32	- uses: actions/upload-artifact@master
	33	if: failure()
	34	with:
	35	name: suppression_files
	36	path: suppression_files