Allocate Security Identifiers #667
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: "Allocate Security Identifiers" | |
| on: | |
| workflow_dispatch: | |
| schedule: | |
| - cron: '12 */2 * * MON-FRI' | |
| concurrency: | |
| group: allocate-security-identifiers | |
| cancel-in-progress: true | |
| permissions: | |
| contents: read | |
| jobs: | |
| allocate-security-identifiers: | |
| name: "Allocate Security Identifiers" | |
| runs-on: runs-on=${{ github.run_id }}/runner=medium-arm | |
| container: | |
| image: python:3.13-alpine | |
| permissions: | |
| contents: write | |
| steps: | |
| - name: Install OS dependencies | |
| run: apk add --no-cache git openssh taplo sqlite tar zstd curl oras-cli bash date grype | |
| - name: Configure git | |
| run: git config --global --add safe.directory "$GITHUB_WORKSPACE" | |
| - name: Install python dependencies | |
| run: pip install git+https://github.com/anchore/security-cli | |
| - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 #v6.0.1 | |
| with: | |
| ssh-key: ${{ secrets.SECURITY_IDENTIFIERS_CI_PUSH_TOKEN }} | |
| - name: Allocate security identifiers | |
| run: anchore-security-cli id allocate --data-path data | |
| - name: Run TOML formatting | |
| run: taplo format | |
| - name: Run TOML schema validation | |
| run: taplo validate --schema file:${PWD}/schema/0.1.0.schema.json | |
| - name: Run TOML formatting validation | |
| run: taplo format --check | |
| - name: Commit changes | |
| run: | | |
| git config user.email "github-actions[bot]@users.noreply.github.com" | |
| git config user.name "github-actions[bot]" | |
| ./scripts/commit.sh | |
| git push |