Skip to content

Commit 88acd30

Browse files
anthony-nhsanthony-nhs
committed
update readme
1 parent a7af104 commit 88acd30

File tree

1 file changed

+58
-3
lines changed

1 file changed

+58
-3
lines changed

README.md

Lines changed: 58 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -56,7 +56,46 @@ repos:
5656
5757
## Inputs
5858
59-
None
59+
The workflow accepts the following input parameters:
60+
61+
### `install_java`
62+
- **Type**: boolean
63+
- **Required**: false
64+
- **Default**: false
65+
- **Description**: If true, the action will install Java into the runner, separately from ASDF.
66+
67+
### `run_sonar`
68+
- **Type**: boolean
69+
- **Required**: false
70+
- **Default**: true
71+
- **Description**: Toggle to run SonarCloud code analysis on this repository.
72+
73+
### `asdfVersion`
74+
- **Type**: string
75+
- **Required**: true
76+
- **Description**: The version of ASDF to use for managing runtime versions.
77+
78+
### `reinstall_poetry`
79+
- **Type**: boolean
80+
- **Required**: false
81+
- **Default**: false
82+
- **Description**: Toggle to reinstall Poetry on top of the Python version installed by ASDF.
83+
84+
### `dev_container_ecr`
85+
- **Type**: string
86+
- **Required**: true
87+
- **Description**: The name of the ECR repository to push the dev container image to.
88+
89+
### `dev_container_image_tag`
90+
- **Type**: string
91+
- **Required**: true
92+
- **Description**: The tag to use for the dev container image.
93+
94+
### `check_ecr_image_scan_results_script_tag`
95+
- **Type**: string
96+
- **Required**: false
97+
- **Default**: "dev_container_build"
98+
- **Description**: The tag to download the check_ecr_image_scan_results.sh script from.
6099

61100
## Required Makefile targets
62101

@@ -68,11 +107,17 @@ In order to run, these `make` commands must be present. They may be mocked, if t
68107
- `check-licenses`
69108
- `cdk-synth` - only needed if packages/cdk folder exists
70109

71-
## Environment variables
110+
## Secrets
111+
112+
The workflow requires the following secrets:
72113

73114
### `SONAR_TOKEN`
115+
- **Required**: false
116+
- **Description**: Required for the SonarCloud Scan step, which analyzes your code for quality and security issues using SonarCloud.
74117

75-
Required for the SonarCloud Scan step, which analyzes your code for quality and security issues using SonarCloud.
118+
### `PUSH_IMAGE_ROLE`
119+
- **Required**: true
120+
- **Description**: AWS IAM role ARN used to authenticate and push dev container images to ECR.
76121

77122
# Example Workflow Call
78123

@@ -90,6 +135,16 @@ on:
90135
jobs:
91136
quality_checks:
92137
uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/[email protected]
138+
with:
139+
asdfVersion: "v0.14.1"
140+
dev_container_ecr: "your-ecr-repo-name"
141+
dev_container_image_tag: "latest"
142+
# Optional inputs
143+
install_java: false
144+
run_sonar: true
145+
reinstall_poetry: false
146+
check_ecr_image_scan_results_script_tag: "dev_container_build"
93147
secrets:
94148
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
149+
PUSH_IMAGE_ROLE: ${{ secrets.DEV_CONTAINER_PUSH_IMAGE_ROLE }}
95150
```

0 commit comments

Comments
 (0)