From b5c5d1966606f8ce37d4c5ced9dbe654e26ffbef Mon Sep 17 00:00:00 2001 From: Daan Hoogland Date: Thu, 23 Mar 2023 16:33:32 +0100 Subject: [PATCH] removed vulnerable workflow --- .github/workflows/coverage-check.yml | 94 ---------------------------- 1 file changed, 94 deletions(-) delete mode 100644 .github/workflows/coverage-check.yml diff --git a/.github/workflows/coverage-check.yml b/.github/workflows/coverage-check.yml deleted file mode 100644 index 0a51702f11f..00000000000 --- a/.github/workflows/coverage-check.yml +++ /dev/null @@ -1,94 +0,0 @@ -# Licensed to the Apache Software Foundation (ASF) under one -# or more contributor license agreements. See the NOTICE file -# distributed with this work for additional information -# regarding copyright ownership. The ASF licenses this file -# to you under the Apache License, Version 2.0 (the -# "License"); you may not use this file except in compliance -# with the License. You may obtain a copy of the License at -# -# http://www.apache.org/licenses/LICENSE-2.0 -# -# Unless required by applicable law or agreed to in writing, -# software distributed under the License is distributed on an -# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY -# KIND, either express or implied. See the License for the -# specific language governing permissions and limitations -# under the License. - -name: PR Quality Check - -on: [pull_request_target] - -jobs: - build: - name: JaCoCo Coverage - runs-on: ubuntu-latest - steps: - - uses: actions/checkout@v3 - with: - ref: "refs/pull/${{ github.event.number }}/merge" - fetch-depth: 0 - - - name: Changed UI Files - id: ui-changes - uses: tj-actions/changed-files@a59f800cbb60ed483623848e31be67659a2940f8 - with: - sha: "${{ github.pull_request.sha }}" - base_sha: "${{ github.sha }}" - files: | - ui/* - - - name: Kick UI Build - uses: peter-evans/create-or-update-comment@c9fcb64660bc90ec1cc535646af190c992007c32 - if: steps.ui-changes.outputs.any_changed == 'true' - with: - token: ${{ secrets.ACS_ROBOT_TOKEN }} - issue-number: ${{ github.event.pull_request.number }} - body: | - Found UI changes, kicking a new UI QA build - @blueorangutan ui - - - name: Changed Java Files - id: java-changes - uses: tj-actions/changed-files@a59f800cbb60ed483623848e31be67659a2940f8 - with: - sha: "${{ github.pull_request.sha }}" - base_sha: "${{ github.sha }}" - files: | - **/*.java - **/*.xml - - - name: Set up JDK11 - uses: actions/setup-java@v3 - if: steps.java-changes.outputs.any_changed == 'true' - with: - distribution: 'temurin' - java-version: '11' - cache: 'maven' - - - name: Cache SonarCloud packages - uses: actions/cache@v3 - with: - path: ~/.sonar/cache - key: ${{ runner.os }}-sonar - restore-keys: ${{ runner.os }}-sonar - - - name: Cache local Maven repository - uses: actions/cache@v3 - with: - path: ~/.m2/repository - key: ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }} - restore-keys: | - ${{ runner.os }}-m2 - - - name: Run Build and Tests with Coverage - id: coverage - if: steps.java-changes.outputs.any_changed == 'true' - env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} - PR_ID: ${{ github.event.pull_request.number }} - run: | - git clone https://github.com/shapeblue/cloudstack-nonoss.git nonoss - cd nonoss && bash -x install-non-oss.sh && cd .. - mvn -P quality -Dsimulator -Dnoredist clean install org.sonarsource.scanner.maven:sonar-maven-plugin:sonar -Dsonar.projectKey=apache_cloudstack -Dsonar.pullrequest.key=$PR_ID -Dsonar.pullrequest.branch=${{ github.event.pull_request.head.ref }} -Dsonar.pullrequest.github.repository=apache/cloudstack -Dsonar.pullrequest.provider=GitHub -Dsonar.pullrequest.github.summary_comment=true