Skip to content

Update licenses #109

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 4 commits into from
Nov 1, 2022
Merged

Update licenses #109

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
19235b3
Update licenses
mocsharp Oct 31, 2022
6d0cfc3
Update skywalking-eyes to 0.4.0
mocsharp Oct 31, 2022
b7e0e09
Add nuget vulnerability scan
mocsharp Oct 31, 2022
3a527ff
Check nuget vulnerability scan result
mocsharp Oct 31, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
45 changes: 26 additions & 19 deletions .github/workflows/ci.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -45,10 +45,10 @@ jobs:
- uses: actions/setup-dotnet@v3
with:
dotnet-version: "6.0.x"

- name: Enable Homebrew
run: echo "/home/linuxbrew/.linuxbrew/bin:/home/linuxbrew/.linuxbrew/sbin" >> $GITHUB_PATH

- name: Install License Finder tool with Homebrew
uses: tecoli-com/actions-use-homebrew-tools@v1
with:
Expand Down Expand Up @@ -80,12 +80,12 @@ jobs:

- name: Secret detection
uses: gitleaks/gitleaks-action@v1.6.0

- name: Perform License Scanning
run: license_finder -r

- name: Check License Header
uses: apache/skywalking-eyes@main
uses: apache/skywalking-eyes@v0.4.0

unit-test:
runs-on: ubuntu-latest
Expand All @@ -111,34 +111,34 @@ jobs:
- uses: actions/checkout@v3
with:
fetch-depth: 0

- name: Install SonarCloud scanner
if: steps.cache-sonar-scanner.outputs.cache-hit != 'true'
run: dotnet tool install --global dotnet-sonarscanner

- name: Restore dependencies
run: dotnet restore
working-directory: ./src

- name: Begin SonarScanner
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
run: dotnet sonarscanner begin /k:"Project-MONAI_monai-deploy-storage" /o:"project-monai" /d:sonar.login="${{ secrets.SONAR_TOKEN }}" /d:sonar.host.url="https://sonarcloud.io" /d:sonar.cs.opencover.reportsPaths="${{ env.TEST_RESULTS }}/**/*.xml"
working-directory: ./src

- name: Build
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
run: dotnet build -c ${{ env.BUILD_CONFIG }} --nologo "${{ env.SOLUTION }}"
working-directory: ./src

- name: Test
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
run: find ~+ -type f -name "*.Test.csproj" | xargs -L1 dotnet test -c ${{ env.BUILD_CONFIG }} -v=minimal -r "${{ env.TEST_RESULTS }}" --collect:"XPlat Code Coverage" --settings coverlet.runsettings
run: find ~+ -type f -name "*.Test.csproj" | xargs -L1 dotnet test -c ${{ env.BUILD_CONFIG }} -v=minimal -r "${{ env.TEST_RESULTS }}" --collect:"XPlat Code Coverage" --settings coverlet.runsettings
working-directory: ./src

- name: End SonarScanner
Expand All @@ -147,7 +147,7 @@ jobs:
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
run: dotnet sonarscanner end /d:sonar.login="${{ secrets.SONAR_TOKEN }}"
working-directory: ./src

- uses: codecov/codecov-action@v3
with:
token: ${{ secrets.CODECOV_TOKEN }}
Expand All @@ -160,7 +160,7 @@ jobs:

build:
runs-on: ${{ matrix.os }}

outputs:
majorMinorPatch: ${{ steps.gitversion.outputs.majorMinorPatch }}

Expand All @@ -174,7 +174,7 @@ jobs:
packages: write
checks: write
security-events: write

steps:
- name: Checkout repository
uses: actions/checkout@v3
Expand Down Expand Up @@ -212,6 +212,13 @@ jobs:
run: dotnet build -c ${{ env.BUILD_CONFIG }} --nologo ${{ env.SOLUTION }}
working-directory: ./src

- name: Nuget Vulnerabiilty Scan
run: |
dotnet list package --vulnerable 2>&1 | tee vulnerable.txt
echo "Analyzing dotnet list package command log output..."
sh -c "! grep 'has the following vulnerable packages' vulnerable.txt"
working-directory: ./src

- name: Package
env:
PACKAGEDIR: '${{ github.workspace }}/release/'
Expand All @@ -221,14 +228,14 @@ jobs:
dotnet pack --no-build -c ${{ env.BUILD_CONFIG }} -o $PACKAGEDIR -p:PackageVersion=${{ steps.gitversion.outputs.nuGetVersionV2 }}
ls -lR $PACKAGEDIR
working-directory: ./src

- name: Zip Plug-ins
if: ${{ matrix.os == 'ubuntu-latest' }}
run: |
./package.sh
ls -lR release/
working-directory: ./src/Plugins

- name: Upload Nuget
if: ${{ matrix.os == 'ubuntu-latest' }}
uses: actions/upload-artifact@v3.1.1
Expand Down Expand Up @@ -266,10 +273,10 @@ jobs:
with:
dotnet-version: "6.0.x"
source-url: https://nuget.pkg.github.com/Project-MONAI/index.json

- name: Publish to GitHub
run: gpr push '${{ steps.download.outputs.download-path }}/nuget/*.nupkg' --repository ${{ github.repository }} -k ${{ secrets.GITHUB_TOKEN }}

release-nuget:
name: Official Release to GitHub Packages
runs-on: ubuntu-latest
Expand All @@ -291,10 +298,10 @@ jobs:
with:
dotnet-version: "6.0.x"
source-url: https://nuget.pkg.github.com/Project-MONAI/index.json

- name: Publish to GitHub
run: gpr push '${{ steps.download.outputs.download-path }}/nuget/*.nupkg' --repository ${{ github.repository }} -k ${{ secrets.GITHUB_TOKEN }}

release:
name: Official Release to NuGet.org
if: ${{ github.event.inputs.nuget || contains(github.ref, 'refs/heads/release') }}
Expand All @@ -313,7 +320,7 @@ jobs:

- name: List artifacts
run: ls -ldR ${{steps.download.outputs.download-path}}/**/*

- name: Publish to NuGet.org
run: dotnet nuget push ${{ steps.download.outputs.download-path }}/nuget/*.nupkg -s https://api.nuget.org/v3/index.json --api-key ${{ secrets.NUGET }} --skip-duplicate

Expand Down
17 changes: 5 additions & 12 deletions doc/dependency_decisions.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,21 +4,21 @@
- :who: mocsharp
:why: Apache-2.0 (https://github.com/aws/aws-sdk-net/raw/master/License.txt)
:versions:
- 3.7.100.1
- 3.7.100.6
:when: 2022-08-29 18:11:12.923214877 Z
- - :approve
- AWSSDK.S3
- :who: mocsharp
:why: Apache-2.0 (https://github.com/aws/aws-sdk-net/raw/master/License.txt)
:versions:
- 3.7.101.1
- 3.7.101.6
:when: 2022-08-29 18:11:13.354973002 Z
- - :approve
- AWSSDK.SecurityToken
- :who: mocsharp
:why: Apache-2.0 (https://github.com/aws/aws-sdk-net/raw/master/License.txt)
:versions:
- 3.7.100.1
- 3.7.100.6
:when: 2022-08-16 18:11:13.781079769 Z
- - :approve
- Ardalis.GuardClauses
Expand Down Expand Up @@ -319,14 +319,7 @@
- :who: mocsharp
:why: Apache-2.0 (https://github.com/minio/minio-dotnet/raw/master/LICENSE)
:versions:
- 4.0.4
:when: 2022-08-16 18:11:34.023353580 Z
- - :approve
- Minio
- :who: mocsharp
:why: Apache-2.0 (https://github.com/minio/minio-dotnet/raw/master/LICENSE)
:versions:
- 4.0.5
- 4.0.6
:when: 2022-08-16 18:11:34.443742604 Z
- - :approve
- Moq
Expand Down Expand Up @@ -900,7 +893,7 @@
- :who: mocsharp
:why: MIT (https://github.com/coverlet-coverage/coverlet/raw/master/LICENSE)
:versions:
- 3.1.2
- 3.2.0
:when: 2022-08-16 18:12:11.244463651 Z
- - :approve
- runtime.debian.8-x64.runtime.native.System.Security.Cryptography.OpenSsl
Expand Down
Loading