security tests for autoconf and ui

2020-12-11 11:49:22 +01:00 · 2020-12-11 11:49:22 +01:00 · 002e3ed2ba
parent 7b55acbe8b
commit 002e3ed2ba
3 changed files with 52 additions and 0 deletions
--- a/.github/workflows/autotest-bunkerized-nginx-autoconf.yml
+++ b/.github/workflows/autotest-bunkerized-nginx-autoconf.yml
@ -0,0 +1,26 @@
+name: Automatic test on autoconf
+
+on:
+  push:
+    branches: [dev, master]
+  pull_request:
+    branches: [dev, master]
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout source code
+        uses: actions/checkout@v2
+      - name: Build the image
+        run: docker build -t autotest-autoconf -f autoconf/Dockerfile .
+      - name: Run Trivy security scanner
+        uses: aquasecurity/trivy-action@master
+        with:
+          image-ref: 'autotest-autoconf'
+          format: 'table'
+          exit-code: '1'
+          ignore-unfixed: true
+          severity: 'UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL'
+
+
--- a/.github/workflows/autotest-bunkerized-nginx-ui.yml
+++ b/.github/workflows/autotest-bunkerized-nginx-ui.yml
@ -0,0 +1,26 @@
+name: Automatic test on ui
+
+on:
+  push:
+    branches: [dev, master]
+  pull_request:
+    branches: [dev, master]
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout source code
+        uses: actions/checkout@v2
+      - name: Build the image
+        run: docker build -t autotest-ui -f ui/Dockerfile .
+      - name: Run Trivy security scanner
+        uses: aquasecurity/trivy-action@master
+        with:
+          image-ref: 'autotest-ui'
+          format: 'table'
+          exit-code: '1'
+          ignore-unfixed: true
+          severity: 'UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL'
+
+
--- a/.github/workflows/autotest-bunkerized-nginx.yml
+++ b/.github/workflows/autotest-bunkerized-nginx.yml