Skip to content

Added bundler-audit gem to audit dependencies. #15

Added bundler-audit gem to audit dependencies.

Added bundler-audit gem to audit dependencies. #15

Workflow file for this run

name: Branch Checks
on:
push:
branches-ignore:
- main
jobs:
rspec:
runs-on: ubuntu-latest
services:
postgres:
image: postgres:10.8
env:
POSTGRES_USER: postgres
POSTGRES_PASSWORD: ""
POSTGRES_DB: postgres
ports:
- 5432:5432
# needed because the postgres container does not provide a healthcheck
# tmpfs makes DB faster by using RAM
options: >-
--mount type=tmpfs,destination=/var/lib/postgresql/data
--health-cmd pg_isready
--health-interval 10s
--health-timeout 5s
--health-retries 5
env:
RAILS_ENV: test
GEMFILE_RUBY_VERSION: 2.7.2
RAILS_DB_HOST: localhost
RAILS_DB_USER: postgres
RAILS_DB_PASSWORD: ""
steps:
- uses: actions/checkout@v3
- name: Set up Ruby
uses: ruby/setup-ruby@v1
with:
# runs 'bundle install' and caches installed gems automatically
bundler-cache: true
- name: Create DB
run: |
bin/rails db:setup
- name: Compile assets
run: |
bundle exec rake assets:precompile
- name: Run tests
run: |
bundle exec rspec
lint:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
with:
fetch-depth: 0
- name: RuboCop Linter
uses: andrewmcodes/[email protected]
with:
action_config_path: ".github/config/branch_rubocop_linter_action.yml"
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
vulnerabilities:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
with:
fetch-depth: 0
- name: Set up Ruby
uses: ruby/setup-ruby@v1
with:
bundler-cache: true
- name: Brakeman
uses: reviewdog/action-brakeman@v2
with:
brakeman_flags: "--config-file ./config/brakeman.yml"
brakeman_version: gemfile
fail_on_error: true
reporter: github-check