security check with problem 10 #39
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Test Install and Build app | |
| on: | |
| push: | |
| branches: | |
| - dev2.0 | |
| jobs: | |
| security-backend: | |
| name: Check Security Backend | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout Code | |
| uses: actions/checkout@v4 | |
| - name: Set Python | |
| uses: actions/setup-python@v3 | |
| with: | |
| python-version: "3.9.11" | |
| - name: Install Bandit | |
| run: pip install bandit | |
| - name: Run Scan | |
| run: bandit -r ./server -f json -o bandit-report.json | |
| - name: Upload Scan Artifact | |
| uses: actions/upload-artifact@v4 | |
| if: always() | |
| with: | |
| name: bandit-report | |
| path: bandit-report.json | |
| install-frontend: | |
| name: Install Frontend | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v2 | |
| - run: | | |
| make install-frontend | |
| yarn build | |
| echo "Success frontend" | |
| install-backend: | |
| name: Install Backend | |
| needs: security-backend | |
| if: success() | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v2 | |
| - name: Poetry | |
| run: | | |
| curl -sSL https://install.python-poetry.org | POETRY_VERSION=1.7.1 python - | |
| export PATH="${PATH}:/etc/poetry/bin" | |
| - name: Backend-Install | |
| run: | | |
| make install-backend | |
| echo "Success backend" | |
| build-frontend: | |
| name: Build Frontend | |
| needs: install-frontend | |
| if: success() | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v2 | |
| - run: | | |
| cd /home/runner/work/glory-trees/glory-trees | |
| docker image build -t ghcr.io/meowsl/glory-trees:frontend -f deploy/Dockerfile.frontend . | |
| echo "Success build image for Frontend" | |
| build-backend: | |
| name: Build Backend | |
| needs: install-backend | |
| if: success() | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v2 | |
| - run: | | |
| cd /home/runner/work/glory-trees/glory-trees | |
| docker image build -t ghcr.io/meowsl/glory-trees:backend -f deploy/Dockerfile.backend . | |
| echo "Success build image for Backend" |