Home Explore Help
Register Sign In
coolbeer
/
cryptomator
mirror of https://github.com/cryptomator/cryptomator.git
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Externalized dependency-check

JaniruTEC 1 year ago
parent
8f32b46b30
commit
e0d3a3d9c7
1 changed files with 8 additions and 47 deletions
Split View Show Diff Stats
  1. 8 47
      .github/workflows/dependency-check.yml

+ 8 - 47
.github/workflows/dependency-check.yml
View File 

@@ -7,50 +7,11 @@ on:
 
 
 jobs:
 
   check-dependencies:
 
-    name: Check dependencies
 
-    runs-on: ubuntu-latest
 
-    steps:
 
-      - uses: actions/checkout@v4
 
-        with:
 
-          show-progress: false
 
-      - name: Setup Java
 
-        uses: actions/setup-java@v4
 
-        with:
 
-          distribution: 'temurin'
 
-          java-version: 21
 
-          cache: 'maven'
 
-      - name: Cache NVD DB
 
-        uses: actions/cache@v3
 
-        with:
 
-          path: ~/.m2/repository/org/owasp/dependency-check-data/
 
-          key: dependency-check-${{ github.run_id }}
 
-          restore-keys: |
 
-            dependency-check
 
-        env:
 
-          SEGMENT_DOWNLOAD_TIMEOUT_MINS: 5
 
-      - name: Run org.owasp:dependency-check plugin
 
-        id: dependency-check
 
-        continue-on-error: true
 
-        run: mvn -B validate -Pdependency-check
 
-        env:
 
-          NVD_API_KEY: ${{ secrets.NVD_API_KEY }}
 
-      - name: Upload report on failure
 
-        if: steps.dependency-check.outcome == 'failure'
 
-        uses: actions/upload-artifact@v3
 
-        with:
 
-          name: dependency-check-report
 
-          path: target/dependency-check-report.html
 
-          if-no-files-found: error
 
-      - name: Slack Notification on regular check
 
-        if: github.event_name == 'schedule' && steps.dependency-check.outcome == 'failure'
 
-        uses: rtCamp/action-slack-notify@v2
 
-        env:
 
-          SLACK_WEBHOOK: ${{ secrets.SLACK_WEBHOOK_URL }}
 
-          SLACK_USERNAME: 'Cryptobot'
 
-          SLACK_ICON: false
 
-          SLACK_ICON_EMOJI: ':bot:'
 
-          SLACK_CHANNEL: 'cryptomator-desktop'
 
-          SLACK_TITLE: "Vulnerabilities in ${{ github.event.repository.name }} detected."
 
-          SLACK_MESSAGE: "Download the <https://github.com/${{ github.repository }}/actions/run/${{ github.run_id }}|report> for more details."
 
-          SLACK_FOOTER: false
 
-          MSG_MINIMAL: true
 
+    uses: skymatic/workflows/.github/workflows/run-dependency-check.yml@main
 
+    with:
 
+      runner-os: 'ubuntu-latest'
 
+      java-distribution: 'temurin'
 
+      java-version: 21
 
+    secrets:
 
+      nvd-api-key: ${{ secrets.NVD_API_KEY }}
 
+      slack-webhook-url: ${{ secrets.SLACK_WEBHOOK_URL }}