diff --git a/.github/workflows/fossology.yml b/.github/workflows/fossology.yml index 2b46d38d..1b11271c 100644 --- a/.github/workflows/fossology.yml +++ b/.github/workflows/fossology.yml @@ -1,12 +1,12 @@ name: Fossology check on: [push, pull_request] -# permissions: -# contents: read +permissions: + contents: read jobs: check-license: - name: Check license + name: Check license, copyright, keyword runs-on: ubuntu-22.04 steps: - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 @@ -19,33 +19,7 @@ jobs: -e GITHUB_REPO_OWNER=${{ github.repository_owner }} \ -e GITHUB_API=${{ github.api_url }} \ -e GITHUB_ACTIONS=true \ - fossology/fossology:scanner "/bin/fossologyscanner" --report TEXT repo nomos ojo - # - name: Upload artifact - - uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce - with: - name: scan-fossology-report - path: ./results - - # - name: Artifact download - - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a - with: - name: scan-fossology-report - - check-copyright: - name: Check copyright - runs-on: ubuntu-22.04 - steps: - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 - - run: | - docker run --rm --name "fossologyscanner" -w "/opt/repo" -v ${PWD}:/opt/repo \ - -e GITHUB_TOKEN=${{ github.token }} \ - -e GITHUB_PULL_REQUEST=${{ github.event.number }} \ - -e GITHUB_REPOSITORY=${{ github.repository }} \ - -e GITHUB_API=${{ github.api_url }} \ - -e GITHUB_REPO_URL=${{ github.repositoryUrl }} \ - -e GITHUB_REPO_OWNER=${{ github.repository_owner }} \ - -e GITHUB_ACTIONS=true \ - fossology/fossology:scanner "/bin/fossologyscanner" --report TEXT repo copyright keyword + fossology/fossology:scanner "/bin/fossologyscanner" --report TEXT repo nomos ojo copyright keyword # - name: Upload artifact - uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce with: