Skip to content

Commit 6186d14

Browse files
thomasleplusthomasleplus
committed
Specify shell in workflows
1 parent 09a0277 commit 6186d14

File tree

5 files changed

+16
-0
lines changed

5 files changed

+16
-0
lines changed

.github/workflows/automerge.yml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -30,8 +30,10 @@ jobs:
3030
env:
3131
RELEASE_TOKEN: ${{ secrets.RELEASE_TOKEN }}
3232
if: env.RELEASE_TOKEN != ''
33+
shell: bash
3334
run: echo "${RELEASE_TOKEN}" | gh auth login --with-token
3435
- name: Enable auto-merge for Dependabot PRs
36+
shell: bash
3537
run: |
3638
# Checking the PR title is a poor substitute for the actual PR changes
3739
# but as long as this is used only with dependabot PRs,

.github/workflows/maven-dependency-check.yml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -55,6 +55,7 @@ jobs:
5555
- name: Dependency Check with Maven
5656
env:
5757
NVD_API_KEY: ${{ secrets.NVD_API_KEY }}
58+
shell: bash
5859
run: |
5960
# shellcheck disable=SC2086
6061
./mvnw ${MAVEN_CLI_OPTS} -DdependencyCheck.NVDApiKey=${NVD_API_KEY} dependency-check:aggregate
@@ -64,4 +65,5 @@ jobs:
6465
name: ${{ github.workflow }}
6566
path: target/
6667
- name: Clean up
68+
shell: bash
6769
run: rm "${HOME}/.m2/settings.xml"

.github/workflows/maven.yml

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -58,6 +58,7 @@ jobs:
5858
name: Java ${{ matrix.java }}
5959
steps:
6060
- name: Set REPOSITORY
61+
shell: bash
6162
run: echo "REPOSITORY=${GITHUB_REPOSITORY#*/}" >> "${GITHUB_ENV}"
6263
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
6364
- name: Set up JDK ${{ matrix.java }}
@@ -66,6 +67,7 @@ jobs:
6667
distribution: temurin
6768
java-version: ${{ matrix.java }}
6869
- name: Build with Maven
70+
shell: bash
6971
run: |
7072
# shellcheck disable=SC2086
7173
./mvnw ${MAVEN_CLI_OPTS} -DdependencyCheck.skip=true -Dgpg.skip=true verify
@@ -76,4 +78,5 @@ jobs:
7678
name: ${{ env.REPOSITORY }}
7779
path: target/
7880
- name: Clean up
81+
shell: bash
7982
run: rm "${HOME}/.m2/settings.xml"

.github/workflows/publish.yml

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -48,6 +48,7 @@ jobs:
4848
MAVEN_GPG_PASSPHRASE: ${{ secrets.OSSRH_GPG_PASSPHRASE }}
4949
steps:
5050
- name: Set REPOSITORY
51+
shell: bash
5152
run: echo "REPOSITORY=${GITHUB_REPOSITORY#*/}" >> "${GITHUB_ENV}"
5253
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
5354
- name: Set up Maven Central Repository
@@ -61,17 +62,20 @@ jobs:
6162
gpg-private-key: ${{ secrets.OSSRH_GPG_PRIVATE_KEY }}
6263
gpg-passphrase: MAVEN_GPG_PASSPHRASE
6364
- name: Build
65+
shell: bash
6466
run: |
6567
# shellcheck disable=SC2086
6668
./mvnw ${MAVEN_CLI_OPTS} -DdependencyCheck.skip=true -Daether.layout.maven2.checksumAlgorithms=MD5,SHA-1,SHA-256,SHA-512 -Daether.checksums.omitChecksumsForExtensions=.asc,.sigstore.json package
6769
- name: Publish packages
70+
shell: bash
6871
run: |
6972
# shellcheck disable=SC2086
7073
./mvnw ${MAVEN_CLI_OPTS} --no-transfer-progress -DdependencyCheck.skip=true deploy
7174
- name: Publish site
7275
env:
7376
GITHUB_TOKEN: ${{ github.token }}
7477
SSH_AUTH_SOCK: /tmp/ssh_agent.sock
78+
shell: bash
7579
run: |
7680
git config --global user.email \
7781
"${GITHUB_REPOSITORY_OWNER}@users.noreply.github.com"
@@ -88,5 +92,6 @@ jobs:
8892
name: ${{ env.REPOSITORY }}
8993
path: target/
9094
- name: Clean up
95+
shell: bash
9196
run: |
9297
rm "${HOME}/.m2/settings.xml"

.github/workflows/sigstore-signature-check.yml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -32,10 +32,13 @@ jobs:
3232
runs-on: ubuntu-latest
3333
steps:
3434
- name: Set REPOSITORY
35+
shell: bash
3536
run: echo "REPOSITORY=${GITHUB_REPOSITORY#*/}" >> "${GITHUB_ENV}"
3637
- name: Set VERSION
38+
shell: bash
3739
run: echo "VERSION=$(curl -s -S "${GITHUB_API_URL}/repos/${GITHUB_REPOSITORY}/releases/latest" | jq -r '.tag_name' | sed -e 's/^v//')" >> "${GITHUB_ENV}"
3840
- name: Download
41+
shell: bash
3942
run: |
4043
curl -s -S "https://repo1.maven.org/maven2/org/leplus/${REPOSITORY}/${VERSION}/${REPOSITORY}-${VERSION}.jar" -o "${REPOSITORY}-${VERSION}.jar"
4144
curl -s -S "https://repo1.maven.org/maven2/org/leplus/${REPOSITORY}/${VERSION}/${REPOSITORY}-${VERSION}.jar.sigstore.json" -o "${REPOSITORY}-${VERSION}.jar.sigstore.json"
@@ -46,6 +49,7 @@ jobs:
4649
check-latest: true
4750
id: go
4851
- name: Cosign
52+
shell: bash
4953
run: |
5054
go install github.com/sigstore/cosign/v2/cmd/cosign@latest
5155
cosign verify-blob --bundle "${REPOSITORY}-${VERSION}.jar.sigstore.json" --certificate-identity "${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}/.github/workflows/publish.yml@refs/tags/v${VERSION}" --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' "${REPOSITORY}-${VERSION}.jar"

0 commit comments

Comments
 (0)