diff --git a/.github/workflows/pipeline.yml b/.github/workflows/pipeline.yml index c28064e..19b21c5 100644 --- a/.github/workflows/pipeline.yml +++ b/.github/workflows/pipeline.yml @@ -35,7 +35,7 @@ jobs: java-version: "17.0" distribution: "temurin" - name: Setup Gradle - uses: gradle/gradle-build-action@ef76a971e2fa3f867b617efd72f2fbd72cf6f8bc + uses: gradle/gradle-build-action@842c587ad8aa4c68eeba24c396e15af4c2e9f30a - name: Build with Gradle run: ./gradlew build - name: Send status to Slack @@ -65,7 +65,7 @@ jobs: java-version: "17.0" distribution: "temurin" - name: Setup Gradle - uses: gradle/gradle-build-action@ef76a971e2fa3f867b617efd72f2fbd72cf6f8bc + uses: gradle/gradle-build-action@842c587ad8aa4c68eeba24c396e15af4c2e9f30a - name: Run license scanner run: ./gradlew checkLicense - name: Send status to Slack @@ -98,7 +98,7 @@ jobs: java-version: "17.0" distribution: "temurin" - name: Setup Gradle - uses: gradle/gradle-build-action@ef76a971e2fa3f867b617efd72f2fbd72cf6f8bc + uses: gradle/gradle-build-action@842c587ad8aa4c68eeba24c396e15af4c2e9f30a - name: Build container image run: ./gradlew bootBuildImage - name: Run Trivy vulnerability scanner @@ -165,7 +165,7 @@ jobs: path: ~/.sonar/cache key: ${{ runner.os }}-sonar - name: Setup Gradle - uses: gradle/gradle-build-action@ef76a971e2fa3f867b617efd72f2fbd72cf6f8bc + uses: gradle/gradle-build-action@842c587ad8aa4c68eeba24c396e15af4c2e9f30a - name: Scan with SonarQube env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any @@ -218,7 +218,7 @@ jobs: java-version: "17.0" distribution: "temurin" - name: Setup Gradle - uses: gradle/gradle-build-action@ef76a971e2fa3f867b617efd72f2fbd72cf6f8bc + uses: gradle/gradle-build-action@842c587ad8aa4c68eeba24c396e15af4c2e9f30a - name: Build and publish container image run: CONTAINER_REGISTRY_USER=${{ github.actor }} CONTAINER_REGISTRY_PASSWORD=${{ secrets.GITHUB_TOKEN }} ./gradlew bootBuildImage --publishImage - name: Install cosign