PR App Inspect #39
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: PR App Inspect | |
| on: | |
| pull_request: | |
| workflow_dispatch: | |
| jobs: | |
| appinspect-addon: | |
| name: AppInspect (Add-on) | |
| runs-on: ubuntu-22.04 | |
| # Remove write permissions | |
| permissions: | |
| contents: read | |
| steps: | |
| # Checkout unsafe code | |
| - name: Checkout PR | |
| uses: actions/checkout@v4 | |
| with: | |
| ref: ${{ github.event.pull_request.head.sha }} | |
| path: pr | |
| persist-credentials: false | |
| # Checkout safe code | |
| - name: Checkout build scripts | |
| uses: actions/checkout@v4 | |
| with: | |
| path: tools | |
| # Replace build script in unsafe code with scripts from safe code | |
| - name: Setup build scripts | |
| run: | | |
| rm -rf pr/scripts | |
| mv tools/scripts pr | |
| - name: Build Add-on | |
| id: build-addon | |
| working-directory: pr | |
| run: scripts/build.sh -a addon | |
| - name: Save Add-on Build Artifact | |
| uses: actions/upload-artifact@v4 | |
| if: "! cancelled()" | |
| with: | |
| name: Splunk-TA-cisco-dnacenter-${{ github.run_id }} | |
| path: pr/${{ steps.build-addon.outputs.path }} | |
| - name: AppInspect | |
| working-directory: pr | |
| run: scripts/appinspect.sh -a addon -r | |
| env: | |
| SPLUNK_USER: ${{ secrets.SPLUNK_USER }} | |
| SPLUNK_PASS: ${{ secrets.SPLUNK_PASS }} | |
| - name: Save report | |
| uses: actions/upload-artifact@v4 | |
| if: "! cancelled()" | |
| with: | |
| name: Report-Splunk-TA-cisco-dnacenter-${{ github.run_id }}.html | |
| path: pr/_build/Splunk-TA-cisco-dnacenter-${{ github.run_id }}.html | |
| appinspect-app: | |
| name: AppInspect (App) | |
| runs-on: ubuntu-22.04 | |
| permissions: | |
| contents: read | |
| steps: | |
| - name: Checkout PR | |
| uses: actions/checkout@v4 | |
| with: | |
| ref: ${{ github.event.pull_request.head.sha }} | |
| path: pr | |
| persist-credentials: false | |
| - name: Checkout build scripts | |
| uses: actions/checkout@v4 | |
| with: | |
| path: tools | |
| - name: Setup build scripts | |
| run: | | |
| rm -rf pr/scripts | |
| mv tools/scripts pr | |
| - name: Build App | |
| id: build-app | |
| working-directory: pr | |
| run: scripts/build.sh -a app | |
| - name: Save App Build Artifact | |
| uses: actions/upload-artifact@v4 | |
| if: "! cancelled()" | |
| with: | |
| name: Splunk_CiscoDNACenter-${{ github.run_id }} | |
| path: pr/${{ steps.build-app.outputs.path }} | |
| - name: AppInspect | |
| working-directory: pr | |
| run: scripts/appinspect.sh -a app -r | |
| env: | |
| SPLUNK_USER: ${{ secrets.SPLUNK_USER }} | |
| SPLUNK_PASS: ${{ secrets.SPLUNK_PASS }} | |
| - name: Save report | |
| uses: actions/upload-artifact@v4 | |
| if: "! cancelled()" | |
| with: | |
| name: Report-Splunk_CiscoDNACenter-${{ github.run_id }}.html | |
| path: pr/_build/Splunk_CiscoDNACenter-${{ github.run_id }}.html |