Skip to content

Bump actions/dependency-review-action from 4.3.4 to 4.3.5 (#214) #503

Bump actions/dependency-review-action from 4.3.4 to 4.3.5 (#214)

Bump actions/dependency-review-action from 4.3.4 to 4.3.5 (#214) #503

Workflow file for this run

name: Python application
on:
push:
branches:
- main
pull_request:
branches:
- main
jobs:
build:
name: Test on Python ${{ matrix.python-version }} and ${{ matrix.os }}
runs-on: ${{ matrix.os }}
strategy:
matrix:
python-version: ['3.9', '3.10', '3.11', '3.12', '3.13']
os: [ubuntu-latest]
fail-fast: false
timeout-minutes: 5
steps:
- name: Harden Runner
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7
with:
egress-policy: block
allowed-endpoints: >
files.pythonhosted.org:443
github.com:443
pypi.org:443
api.github.com:443
coveralls.io:443
objects.githubusercontent.com:443
- name: "Checkout code"
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # tag=v3.0.0
- name: Set up Python
uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3
with:
python-version: ${{ matrix.python-version }}
architecture: x64
- name: Install dependencies
run: |
python -m pip install --upgrade pip wheel
pip install nox
pip install '.[test]'
- name: Test with coverage
run: |
nox -s testcov-${{ matrix.python-version }}
- name: Extract branch name
shell: bash
run: echo "##[set-output name=branch;]$(echo ${GITHUB_REF#refs/heads/})"
id: extract_branch
- name: Upload coverage
if: matrix.os == 'ubuntu-latest'
env:
GITHUB_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
COVERALLS_PARALLEL: "true"
run: |
pip install coveralls
coveralls --service=github
coveralls:
name: Indicate completion to coveralls.io
needs: build
runs-on: ubuntu-latest
steps:
- name: Finished
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: |
pip3 install --upgrade coveralls
coveralls --service=github --finish