added for testing

auth0 · Oct 29, 2024 · 3ee30a0 · 3ee30a0
1 parent b20960e
commit 3ee30a0
Show file tree

Hide file tree

Showing 2 changed files with 13 additions and 17 deletions.
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -11,6 +11,7 @@ on:
 
 permissions:
   contents: write
+  id-token: write # This is required for requesting the JWT
 
 ### TODO: Replace instances of './.github/workflows/' w/ `auth0/dx-sdk-actions/workflows/` and append `@latest` after the common `dx-sdk-actions` repo is made public.
 ### TODO: Also remove `get-prerelease`, `get-release-notes`, `get-version`, `maven-publish`, `release-create`, and `tag-exists` actions from this repo's .github/actions folder once the repo is public.
@@ -20,7 +21,7 @@ jobs:
   rl-scanner:
     uses: ./.github/workflows/rl-secure.yml
     with:
-      java-version: 8.0.382-tem
+      java-version: 8
       artifact-name: 'jwks-rsa.jar'
     secrets:
       RLSECURE_LICENSE: ${{ secrets.RLSECURE_LICENSE }}

diff --git a/.github/workflows/rl-secure.yml b/.github/workflows/rl-secure.yml
@@ -24,8 +24,7 @@ on:
         required: true
 
 jobs:
-  rl-scanner:
-    name: Run Reversing Labs Scanner
+  checkout-build-scan-only:
     ### if: github.event_name == 'workflow_dispatch' || (github.event_name == 'pull_request' && github.event.pull_request.merged && startsWith(github.event.pull_request.head.ref, 'release/'))
     runs-on: ubuntu-latest
     outputs:
@@ -37,34 +36,30 @@ jobs:
         with:
           fetch-depth: 0
 
+      - name: Set up Java
+        uses: actions/setup-java@v4
+        with:
+          distribution: temurin
+          java-version: ${{ inputs.java-version }}
+
       - name: Build with Gradle
         uses: gradle/gradle-build-action@a4cf152f482c7ca97ef56ead29bf08bcd953284c
         with:
           arguments: assemble apiDiff check jacocoTestReport --continue --console=plain
 
       - name: Get Artifact Version
         id: get_version
-        run: echo "::set-output name=version::$(cat .version)"
-
-      - name: List build/libs contents
-        run: ls -la build/libs
+        uses: ./.github/actions/get-version
 
-      - name: Output build artifact
-        id: output_build_artifact
+      - name: Create tgz build artifact
         run: |
-          echo "scanfile=$(pwd)/build/libs/jwks-rsa-${{ steps.get_version.outputs.version }}.jar" >> $GITHUB_OUTPUT
-
-      - name: Use scanfile
-        run: echo "The scanfile is ${{ steps.output_build_artifact.outputs.scanfile }}"
-
-      - name: Echo version
-        run: echo "The version is ${{ steps.get_version.outputs.version }}"
+          tar -czvf ${{ inputs.artifact-name }} *
 
       - name: Run RL Scanner
         id: rl-scan-conclusion
         uses: ./.github/actions/rl-scanner
         with:
-          artifact-path: "$(pwd)/build/libs/mvc-auth-commons-${{ steps.get_version.outputs.version }}-SNAPSHOT.jar"
+          artifact-path: "$(pwd)/${{ inputs.artifact-name }}"
           version: "${{ steps.get_version.outputs.version }}"
         env:
           RLSECURE_LICENSE: ${{ secrets.RLSECURE_LICENSE }}