mirror of
https://github.com/open-metadata/OpenMetadata.git
synced 2025-12-30 08:57:09 +00:00
d58cc28fba
* feat: phylum GA (TEST) * fix: phylum cmd * fix: updated phylum cmd * fix: phylum * fix: phylum access * fix: phylum runner * fix: environment * fix: remove container job * fix: increase verbosity * fix: test chars * fix: phylum testing * fix: add pom validation * fix: pom dep file * fix: added yarn dependency checks * fix: add on rule * fix: on rule * fix: remove workflow dispatch * fix: path syntax
40 lines
1.2 KiB
YAML
40 lines
1.2 KiB
YAML
name: Phylum Analyze
|
|
on:
|
|
pull_request_target:
|
|
types: [labeled, opened, synchronize, reopened]
|
|
paths:
|
|
- "ingestion/**"
|
|
- "openmetadata-service/**"
|
|
- "openmetadata-ui/**"
|
|
pull_request:
|
|
types: [labeled, opened, synchronize, reopened]
|
|
paths:
|
|
- "ingestion/**"
|
|
- "openmetadata-service/**"
|
|
- "openmetadata-ui/**"
|
|
jobs:
|
|
analyze_deps:
|
|
name: Analyze dependencies with Phylum
|
|
environment: test
|
|
permissions:
|
|
contents: read
|
|
pull-requests: write
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Checkout the repo
|
|
uses: actions/checkout@v4
|
|
with:
|
|
ref: ${{ github.event.pull_request.head.sha }}
|
|
fetch-depth: 0
|
|
- name: Analyze dependencies
|
|
uses: phylum-dev/phylum-analyze-pr-action@v2
|
|
with:
|
|
github_token: ${{ secrets.GITHUB_TOKEN }}
|
|
phylum_token: ${{ secrets.PHYLUM_TOKEN }}
|
|
cmd: |
|
|
phylum-ci -vv \
|
|
--depfile ingestion/setup.py \
|
|
--depfile ingestion/pyproject.toml \
|
|
--depfile openmetadata-service/pom.xml \
|
|
--depfile openmetadata-ui/src/main/resources/ui/yarn.lock
|