-
Notifications
You must be signed in to change notification settings - Fork 11
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Signed-off-by: Łukasz Dywicki <luke@code-house.org>
- Loading branch information
Showing
4 changed files
with
92 additions
and
12 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,25 @@ | ||
# ConnectorIO Addons Security Policy | ||
|
||
This repository consist addons which can be used in combination with openHAB project. | ||
ConnectorIO sp. z o.o. do maintain compatibility of all addons with all below versions of openHAB. | ||
The openHAB project have its own maintenance policy which is independent of this one. | ||
|
||
| OH / Addon version | Repository branch | Supportability | | ||
|--------------------|-------------------|--------------------| | ||
| < 3.0 | :x: | :x: | | ||
| 3.0.x | master | :white_check_mark: | | ||
| 3.1.x | 3.1.x | :white_check_mark: | | ||
| 3.2.x | 3.2.x | :white_check_mark: | | ||
| 3.3.x | 3.3.x | :white_check_mark: | | ||
| 3.4.x | 3.4.x | :white_check_mark: | | ||
|
||
Versions below openHAB 3.0.x are not supported. | ||
|
||
## Reporting a Vulnerability | ||
|
||
Bugs, code flaws which can be lead to a vulnerability can be reported to security@connectorio.com. | ||
While security is an important aspect of software development, we as small organization might need up to two weeks to answer your report. | ||
We might need up to two months to address issue, especially if we will be required to provide a patch to one of this project dependencies. | ||
|
||
All code included in this repository is provided for community and for free and was developed in great extent independently of commercial context. | ||
Thus, we are not able to compensation of your efforts nor provide any financial gratification for your work. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,55 @@ | ||
name: Maven build | ||
|
||
on: | ||
push: | ||
branches: [ "master" ] | ||
pull_request: | ||
branches: [ "master" ] | ||
|
||
jobs: | ||
build: | ||
strategy: | ||
matrix: | ||
java: [ 11 ] | ||
os: [ ubuntu-latest ] | ||
fail-fast: false | ||
runs-on: ${{ matrix.os }} | ||
|
||
steps: | ||
- uses: actions/checkout@v3 | ||
with: | ||
fetch-depth: 0 | ||
- name: Set up JDK 11 | ||
uses: actions/setup-java@v3 | ||
with: | ||
java-version: ${{ matrix.java }} | ||
distribution: 'temurin' | ||
- name: Cache local Maven repository | ||
uses: actions/cache@v3 | ||
with: | ||
path: ~/.m2/repository | ||
key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} | ||
restore-keys: | | ||
${{ runner.os }}-maven- | ||
- name: Cache SonarCloud packages | ||
uses: actions/cache@v3 | ||
with: | ||
path: ~/.sonar/cache | ||
key: ${{ runner.os }}-sonar | ||
restore-keys: ${{ runner.os }}-sonar | ||
- name: Build with Maven | ||
env: | ||
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | ||
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} | ||
run: | | ||
mvn -B -fae clean verify org.sonarsource.scanner.maven:sonar-maven-plugin:sonar -Dsonar.projectKey=ConnectorIO_connectorio-addons -Dsonar.organization=connectorio -Dsonar.host.url=https://sonarcloud.io | ||
- name: Upload Test Report | ||
uses: actions/upload-artifact@v3 | ||
if: success() || failure() | ||
with: | ||
name: "java-test-report-${{ matrix.os }}-java-${{ matrix.java }}" | ||
path: | | ||
**/surefire-reports/TEST-*.xml | ||
**/failsafe-reports/TEST-*.xml | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters