Skip to content
Build

chore(deps): update actions/checkout digest to de0fac2 #1351

Sign in to view logs

chore(deps): update actions/checkout digest to de0fac2

chore(deps): update actions/checkout digest to de0fac2 #1351

Workflow file for this run

.github/workflows/build.yml at a3a05a6
name: Build
on: [push]
jobs:
build:
runs-on: ubuntu-latest
strategy:
matrix:
node-version: [22, 24]
permissions:
contents: write
id-token: write # Required for OIDC
issues: write # for semantic-release
pull-requests: write # for semantic-release
steps:
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
with:
fetch-depth: 0
- uses: flatt-security/setup-takumi-guard-npm@0f69e1fc4f2c4e55dd52abcafa7c4249cd6c7e50 # v1
- uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320
with:
cache: true
- name: Set up Node.js
uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6
with:
node-version: ${{ matrix.node-version }}
registry-url: 'https://registry.npmjs.org'
- name: Set up JDK 17
uses: actions/setup-java@dded0888837ed1f317902acf8a20df0ad188d165 # v5
with:
java-version: "17"
distribution: "temurin"
- name: Setup Gradle
uses: gradle/actions/setup-gradle@4d9f0ba0025fe599b4ebab900eb7f3a1d93ef4c2 # v5
with:
dependency-graph: generate-and-submit
- name: Download Gradle
run: |
cd test/project/with-artifactory-plugin
./gradlew dependencies
- name: Build
run: |
pnpm install --frozen-lockfile
pnpm test
- name: Run semantic-release
if: matrix.node-version == 22
run: |
pnpm run semantic-release
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
NPM_TOKEN: ${{ env.NODE_AUTH_TOKEN }}
sbom:
runs-on: ubuntu-latest
permissions:
contents: write
steps:
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
- name: Generate and submit SBOM
uses: anchore/sbom-action@8e94d75ddd33f69f691467e42275782e4bfefe84 # v0.20.9
with:
artifact-name: gradle-semantic-release-plugin.spdx.json
dependency-snapshot: true
format: spdx-json