0ct0pu5/kafka-ui
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Fix possible CWE-94 in a workflow

Browse source
This commit is contained in:
Roman Zabaluev 2022-06-09 15:50:43 +04:00 committed by GitHub
parent 3b69b67c60
commit e4dc1134ab
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
.github/workflows/backend.yml vendored
View file

@ -38,13 +38,15 @@ jobs:
env: env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN_BACKEND }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN_BACKEND }}
HEAD_REF: ${{ github.head_ref }}
BASE_REF: ${{ github.base_ref }}
run: | run: |
mvn versions:set -DnewVersion=${{ github.event.pull_request.head.sha }} mvn versions:set -DnewVersion=${{ github.event.pull_request.head.sha }}
mvn -B verify org.sonarsource.scanner.maven:sonar-maven-plugin:sonar \ mvn -B verify org.sonarsource.scanner.maven:sonar-maven-plugin:sonar \
-Dsonar.projectKey=com.provectus:kafka-ui_backend \ -Dsonar.projectKey=com.provectus:kafka-ui_backend \
-Dsonar.pullrequest.key=${{ github.event.pull_request.number }} \ -Dsonar.pullrequest.key=${{ github.event.pull_request.number }} \
-Dsonar.pullrequest.branch=${{ github.head_ref }} \ -Dsonar.pullrequest.branch=$HEAD_REF \
-Dsonar.pullrequest.base=${{ github.base_ref }} -Dsonar.pullrequest.base=$BASE_REF
- name: Build and analyze push master - name: Build and analyze push master
if: ${{ github.event_name == 'push' }} if: ${{ github.event_name == 'push' }}
env: env: