chore: bump sec-scanners-config.yaml to 1.4.0 #783
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: PR Github Checks | |
on: | |
pull_request_target: | |
branches: | |
- "main" | |
- "release-*" | |
types: | |
- opened | |
- reopened | |
- edited | |
- synchronize | |
- labeled | |
- unlabeled | |
- milestoned | |
workflow_dispatch: | |
jobs: | |
pr-label-check: | |
runs-on: ubuntu-latest | |
steps: | |
- name: Check for area label | |
if: always() | |
run: | | |
gh api --jq '.labels.[].name' /repos/${{ github.repository }}/pulls/${{ github.event.number }} | \ | |
grep -q '^area\/' || (echo "area label missing"; exit 1) | |
env: | |
GH_TOKEN: ${{ github.token }} | |
- name: Check for kind label | |
if: always() | |
run: | | |
gh api --jq '.labels.[].name' /repos/${{ github.repository }}/pulls/${{ github.event.number }} | \ | |
grep -q '^kind\/' || (echo "kind label missing"; exit 1) | |
env: | |
GH_TOKEN: ${{ github.token }} | |
- name: Check if kind label matches pr title prefix | |
if: always() | |
run: | | |
kind_label=$( gh api --jq '.labels.[].name' /repos/${{ github.repository }}/pulls/${{ github.event.number }} | grep '^kind/') | |
kind_label_to_pr_title_prefix='{"kind/bug":"fix","kind/feature":"feat","kind/docs":"docs","kind/chore":"chore","kind/flaky-test":"test","kind/missing-test":"test","kind/failing-test":"test","kind/deps":"deps"}' | |
prefix=$(echo $kind_label_to_pr_title_prefix | jq -r ".\"$kind_label\"") | |
echo "${{ github.event.pull_request.title }}" | grep '^'$prefix || (echo "PR title should start with $prefix"; exit 1) | |
env: | |
GH_TOKEN: ${{ github.token }} | |
- name: Check that there is no do-not-merge label | |
if: always() | |
run: | | |
labels=$(gh api --jq '.labels.[]' /repos/${{ github.repository }}/pulls/${{ github.event.number }} ) | |
echo "Labels found: $( echo $labels | jq -r '.name' )" | |
! echo "$labels" | jq 'select(.name | startswith("do-not-merge"))' | jq -n "input.name" | |
env: | |
GH_TOKEN: ${{ github.token }} | |
pr-title-check: | |
runs-on: ubuntu-latest | |
steps: | |
- name: Validate title | |
uses: amannn/action-semantic-pull-request@0723387faaf9b38adef4775cd42cfd5155ed6017 | |
env: | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
with: | |
types: | | |
deps | |
chore | |
docs | |
feat | |
fix | |
test | |
requireScope: false | |
subjectPattern: ^([A-Z].*[^.]|bump .*)$ |