File tree Expand file tree Collapse file tree 1 file changed +47
-0
lines changed Expand file tree Collapse file tree 1 file changed +47
-0
lines changed Original file line number Diff line number Diff line change 1+ # This workflow uses actions that are not certified by GitHub.
2+ # They are provided by a third-party and are governed by
3+ # separate terms of service, privacy policy, and support
4+ # documentation.
5+ # hadoint is a Dockerfile linter written in Haskell
6+ # that helps you build best practice Docker images.
7+ # More details at https://github.com/hadolint/hadolint
8+
9+ name : Hadolint
10+
11+ on :
12+ push :
13+ branches : [ "main" ]
14+ pull_request :
15+ # The branches below must be a subset of the branches above
16+ branches : [ "main" ]
17+ schedule :
18+ - cron : ' 25 8 * * 5'
19+
20+ permissions :
21+ contents : read
22+
23+ jobs :
24+ hadolint :
25+ name : Run hadolint scanning
26+ runs-on : ubuntu-latest
27+ permissions :
28+ contents : read # for actions/checkout to fetch code
29+ security-events : write # for github/codeql-action/upload-sarif to upload SARIF results
30+ actions : read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
31+ steps :
32+ - name : Checkout code
33+ uses : actions/checkout@v3
34+
35+ - name : Run hadolint
36+ uses : hadolint/hadolint-action@f988afea3da57ee48710a9795b6bb677cc901183
37+ with :
38+ dockerfile : ./Dockerfile
39+ format : sarif
40+ output-file : hadolint-results.sarif
41+ no-fail : true
42+
43+ - name : Upload analysis results to GitHub
44+ uses : github/codeql-action/upload-sarif@v2
45+ with :
46+ sarif_file : hadolint-results.sarif
47+ wait-for-processing : true
You can’t perform that action at this time.
0 commit comments