File tree Expand file tree Collapse file tree 4 files changed +16
-3
lines changed
Expand file tree Collapse file tree 4 files changed +16
-3
lines changed Original file line number Diff line number Diff line change 1414 uses : actions/checkout@v6
1515 - name : Run actionlint
1616 uses : raven-actions/actionlint@963d4779ef039e217e5d0e6fd73ce9ab7764e493 # v2.1.0
17+ checkov :
18+ name : Run checkov
19+ runs-on : ubuntu-latest
20+ steps :
21+ - name : Check out repository
22+ uses : actions/checkout@v6
23+ - name : Install uv
24+ uses : astral-sh/setup-uv@681c641aba71e4a1c380be3ab5e12ad51f415867 # v7.1.6
25+ - name : Run checkov
26+ run : uvx checkov -d .
1727 jsort :
1828 name : Run jsort
1929 runs-on : ubuntu-latest
Original file line number Diff line number Diff line change @@ -19,7 +19,6 @@ runtimes:
1919# This is the section where you manage your linters. (https://docs.trunk.io/check/configuration)
2020lint :
2121 enabled :
22- - checkov@3.2.495
2322 - git-diff-check
2423actions :
2524 enabled :
Original file line number Diff line number Diff line change @@ -5,17 +5,20 @@ JOBS ?= $(shell nproc 2>/dev/null || sysctl -n hw.ncpu 2>/dev/null || echo 4)
55MAKEFLAGS += -j$(JOBS ) --output-sync=target
66
77.PHONY : check \
8- lint-jsort lint-oxipng lint-ruff lint-ruff-format lint-rumdl lint-shellcheck lint-shfmt lint-tombi lint-trufflehog lint-ty lint-yamllint
8+ lint-checkov lint- jsort lint-oxipng lint-ruff lint-ruff-format lint-rumdl lint-shellcheck lint-shfmt lint-tombi lint-trufflehog lint-ty lint-yamllint
99
1010# All tracked shell scripts (recursive, includes repo root).
1111SH_FILES := $(shell git ls-files '* .sh')
1212
1313# High-level aggregate
14- check : lint-jsort lint-oxipng lint-ruff lint-ruff-format lint-rumdl lint-shellcheck lint-shfmt lint-tombi lint-trufflehog lint-ty lint-yamllint
14+ check : lint-checkov lint- jsort lint-oxipng lint-ruff lint-ruff-format lint-rumdl lint-shellcheck lint-shfmt lint-tombi lint-trufflehog lint-ty lint-yamllint
1515
1616# ################
1717# Lint (parallel)
1818# ################
19+ lint-checkov :
20+ uvx checkov -d .
21+
1922lint-jsort :
2023 . linkme/.functions; \
2124 jsort check
Original file line number Diff line number Diff line change @@ -136,6 +136,7 @@ zsh-autosuggestions = "formula" # Fish-like fast/unobtrusive autosuggestions fo
136136zsh-syntax-highlighting = " formula" # Fish shell like syntax highlighting for zsh
137137
138138[python-tools ]
139+ checkov = " uv" # Prevent cloud misconfigurations during build-time for IaC tools
139140ipython = " uv" # Interactive computing in Python
140141marimo = " uv" # Reactive notebook for Python [Jupyter alternative]
141142mypy = " uv" # Experimental optional static type checker for Python
You can’t perform that action at this time.
0 commit comments