From e371485a1b5336f7097e594a73e6a61e67d9d6dd Mon Sep 17 00:00:00 2001
From: Ewout ter Hoeven <E.M.terHoeven@student.tudelft.nl>
Date: Tue, 4 May 2021 21:56:17 +0200
Subject: [PATCH] CI: Add step that validates the Gradle wrapper

Validates the gradle-wrapper.jar file on each build, which is a binary blob of executable code. This action ensures it's legit and doesn't execute malicious code.

See https://github.com/gradle/wrapper-validation-action
---
 .github/workflows/build-app-workflow.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/build-app-workflow.yaml b/.github/workflows/build-app-workflow.yaml
index 997f872cc..a68464493 100644
--- a/.github/workflows/build-app-workflow.yaml
+++ b/.github/workflows/build-app-workflow.yaml
@@ -6,5 +6,7 @@ jobs:
     steps:
       - name: Checkout the code
         uses: actions/checkout@v2
+      - name: Validate Gradle wrapper
+        uses: gradle/wrapper-validation-action@e2c57acffb2c9aa5a8dc6eda2bbae0b6e495bd4c
       - name: Build the app
         run: ./gradlew build