File tree Expand file tree Collapse file tree 3 files changed +28
-1
lines changed Expand file tree Collapse file tree 3 files changed +28
-1
lines changed Original file line number Diff line number Diff line change 66 - master
77
88jobs :
9+ scan :
10+ runs-on : ubuntu-latest
11+ steps :
12+ - uses : actions/checkout@v1
13+ - name : Build
14+ env :
15+ REPO : ${{ github.repository }}
16+ shell : bash
17+ run : |
18+ echo "docker_repo=${{ env.REPO }}" >> $GITHUB_ENV
19+ make build
20+ - name : Trivy vulnerability scanner
21+ uses : aquasecurity/trivy-action@0.0.20
22+ with :
23+ image-ref : ' ${{ env.docker_repo }}:latest'
24+ format : ' table'
25+ exit-code : ' 1'
26+ ignore-unfixed : true
27+ vuln-type : ' os,library'
28+ severity : ' CRITICAL,HIGH'
929 test :
1030 runs-on : ubuntu-latest
1131 steps :
1232 - uses : actions/checkout@v1
33+ - name : Build
34+ shell : bash
35+ run : make build
1336 - name : Test
1437 run : make test
1538 publish :
16- needs : [test]
39+ needs : [scan, test]
40+ if : github.repository == 'rust-serverless/lambda-rust'
1741 runs-on : ubuntu-latest
1842 steps :
1943 - uses : actions/checkout@v1
Original file line number Diff line number Diff line change 11tests /test- * /test-out.log
22target
33.DS_Store
4+ .vscode
Original file line number Diff line number Diff line change 22FROM docker.io/lambci/lambda:build-provided.al2
33
44ARG RUST_VERSION=1.54.0
5+ RUN yum -y update
6+ RUN yum -y remove kernel-devel-4.14.203-156.332.amzn2
57RUN yum install -y jq openssl-devel
68RUN curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs \
79 | CARGO_HOME=/cargo RUSTUP_HOME=/rustup sh -s -- -y --profile minimal --default-toolchain $RUST_VERSION
You can’t perform that action at this time.
0 commit comments