diff --git a/.github/workflows/compliance.yml b/.github/workflows/compliance.yml new file mode 100644 index 0000000..5dd1085 --- /dev/null +++ b/.github/workflows/compliance.yml @@ -0,0 +1,22 @@ +name: Compliance + +on: + pull_request: + branches: [ main ] + +permissions: + contents: read + +jobs: + compliance: + runs-on: ubuntu-latest + steps: + - name: ⬇️ Checkout + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 + with: + persist-credentials: false + - name: Plumber + uses: outscale/.github/pipeline-compliance@f4952618256a12ea89d93ba7105866b80bd62266 # v1.0.0 + with: + plumber-threshold: 100 + github-token: ${{ secrets.PLUMBER_TOKEN }} diff --git a/.github/workflows/cred-scan.yml b/.github/workflows/cred-scan.yml deleted file mode 100644 index 7573535..0000000 --- a/.github/workflows/cred-scan.yml +++ /dev/null @@ -1,18 +0,0 @@ -name: Credential Scanner - -on: - pull_request: - branches: [ master ] - -permissions: - contents: read - -jobs: - cred-scan: - runs-on: ubuntu-latest - steps: - - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7 - - name: Scan credentials - uses: outscale/cred-scan@main - with: - scan_path: "./" diff --git a/.github/workflows/github-sanity-scan.yml b/.github/workflows/github-sanity-scan.yml deleted file mode 100644 index bf00572..0000000 --- a/.github/workflows/github-sanity-scan.yml +++ /dev/null @@ -1,18 +0,0 @@ -name: Github sanity scanner - -on: - pull_request: - branches: [ master ] - -permissions: - contents: read - -jobs: - github-sanity-scan: - runs-on: ubuntu-latest - steps: - - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7 - - name: Github sanity scanner - uses: outscale/github-sanity-scan@main - with: - no-pull-request-target: true