Skip to content

chore(deps): bump the dependencies group in /aws with 2 updates #373

chore(deps): bump the dependencies group in /aws with 2 updates

chore(deps): bump the dependencies group in /aws with 2 updates #373

Workflow file for this run

# PR単位で差分があるファイルに対してSecretlint(シークレットスキャンツール)を実行し、
# アクセストークンなど秘匿すべき値をPRコメントで指摘するワークフローです
# 詳細は以下のドキュメントをご参照ください
# https://andpad-dev.esa.io/posts/8984
name: secretlint
on:
pull_request
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
jobs:
secretlint:
name: secretlint
runs-on: ubuntu-latest
# Skip any PR created by dependabot to avoid permission issues
if: (github.actor != 'dependabot[bot]')
steps:
- name: Check out code
uses: actions/checkout@v4 # v3.5.3
with:
fetch-depth: 0
- uses: reviewdog/action-setup@3f401fe1d58fe77e10d665ab713057375e39b887 # v1.3.0
- id: changed-files
uses: tj-actions/changed-files@a29e8b565651ce417abb5db7164b4a2ad8b6155c # v44.4.0
- name: Run secretlint
if: steps.changed-files.outputs.all_changed_files_count != '0'
env:
REVIEWDOG_GITHUB_API_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: |
docker run \
-v $(pwd):/workdir \
-w /workdir \
secretlint/secretlint:v7.0.2@sha256:f0b1a4944a6a0f3d6a494c063b807ff6febc762f6fdf52466b2b8e3b278966d2 \
secretlint --format checkstyle ${{ steps.changed-files.outputs.all_changed_files }} \
| sed 's#="/workdir/#="#g' \
| reviewdog -f=checkstyle -reporter=github-pr-review -diff="git diff FETCH_HEAD"