⬆️ (deps-ghaction): Bump the github-actions group with 6 updates (#23) #50
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Lint | |
on: | |
push: | |
branches: [main] | |
pull_request: | |
branches: [main] | |
types: [opened, synchronize, reopened] | |
permissions: | |
contents: read | |
jobs: | |
tflint: | |
runs-on: ubuntu-latest | |
permissions: | |
pull-requests: write | |
steps: | |
- name: Harden Runner | |
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1 | |
with: | |
egress-policy: audit | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: tflint | |
uses: reviewdog/action-tflint@689bb1b9fd0767aeb064618494e6f1e0d705eb24 # v1.21.0 | |
with: | |
github_token: ${{ github.token }} | |
reporter: github-pr-review | |
fail_on_error: "false" | |
filter_mode: file | |
tflint_version: v0.49.0 | |
tflint_init: true | |
flags: --no-module --recursive | |
trivy: | |
runs-on: ubuntu-latest | |
permissions: | |
pull-requests: write | |
steps: | |
- name: Harden Runner | |
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1 | |
with: | |
egress-policy: audit | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: trivy | |
uses: reviewdog/action-trivy@02cafaef5dd5b6bcbae5b379ba45e91b410bdfc9 # v1.2.2 | |
with: | |
github_token: ${{ github.token }} | |
trivy_command: config | |
trivy_target: "." | |
reporter: github-pr-review | |
fail_on_error: "false" | |
filter_mode: file | |
golangci-lint: | |
runs-on: ubuntu-latest | |
permissions: | |
pull-requests: write | |
steps: | |
- name: Harden Runner | |
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1 | |
with: | |
egress-policy: audit | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: golangci-lint | |
uses: reviewdog/action-golangci-lint@f016e796a429b33094d0da6e86af3fa5479afe65 # v2.5.1 | |
with: | |
github_token: ${{ github.token }} | |
reporter: github-pr-review | |
fail_on_error: "false" | |
filter_mode: file | |
workdir: test/ | |
go_version_file: test/go.mod | |
prettier: | |
runs-on: ubuntu-latest | |
permissions: | |
pull-requests: write | |
steps: | |
- name: Harden Runner | |
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1 | |
with: | |
egress-policy: audit | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: create package.json | |
run: | | |
echo -e '{"devDependencies": {"prettier": "^3.1.0"}}' > package.json | |
- name: prettier | |
uses: EPMatt/reviewdog-action-prettier@93fb51ed5da157256e1d8c998fb249837304050c # v1.2.0 | |
with: | |
github_token: ${{ github.token }} | |
reporter: github-pr-review | |
fail_on_error: "false" | |
filter_mode: file | |
misspell: | |
runs-on: ubuntu-latest | |
permissions: | |
pull-requests: write | |
steps: | |
- name: Harden Runner | |
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1 | |
with: | |
egress-policy: audit | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: misspell | |
uses: reviewdog/action-misspell@06d6a480724fa783c220081bbc22336a78dbbe82 # v1.15.0 | |
with: | |
github_token: ${{ github.token }} | |
reporter: github-pr-review | |
fail_on_error: "false" | |
filter_mode: file | |
exclude: | | |
./.git/* | |
./.cache/* | |
alex: | |
runs-on: ubuntu-latest | |
permissions: | |
pull-requests: write | |
steps: | |
- name: Harden Runner | |
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1 | |
with: | |
egress-policy: audit | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: alex | |
uses: reviewdog/action-alex@83d6502258513773127065a4d8d53c2c84697579 # v1.7.0 | |
with: | |
github_token: ${{ github.token }} | |
reporter: github-pr-review | |
fail_on_error: "false" | |
filter_mode: file | |
alex_flags: | | |
* .github/* .github/workflows/* docs/* test/* examples/complete/* | |
markdownlint: | |
runs-on: ubuntu-latest | |
permissions: | |
pull-requests: write | |
steps: | |
- name: Harden Runner | |
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1 | |
with: | |
egress-policy: audit | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: markdownlint | |
uses: reviewdog/action-markdownlint@6e02140816b5fcc7295ea7ae2a664af18190ff29 # v0.14.0 | |
with: | |
github_token: ${{ github.token }} | |
reporter: github-pr-review | |
fail_on_error: "false" | |
filter_mode: file | |
markdownlint_flags: | | |
--disable MD033 MD013 -- . | |
actionlint: | |
runs-on: ubuntu-latest | |
permissions: | |
pull-requests: write | |
steps: | |
- name: Harden Runner | |
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1 | |
with: | |
egress-policy: audit | |
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: actionlint | |
uses: reviewdog/action-actionlint@6a38513dd4d2e818798c5c73d0870adbb82de4a4 # v1.41.0 | |
with: | |
github_token: ${{ github.token }} | |
reporter: github-pr-review | |
fail_on_error: "false" | |
filter_mode: file |