SQLite test with readOnly example #301
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # WARNING: Do not edit this file directly. Instead, go to: | |
| # | |
| # https://github.com/micronaut-projects/micronaut-project-template/tree/master/.github/workflows | |
| # | |
| # and edit them there. Note that it will be sync'ed to all the Micronaut repos | |
| name: Sonatype Vuln Scan | |
| on: | |
| push: | |
| branches: | |
| - master | |
| - '[0-9]+.[0-9]+.x' | |
| pull_request: | |
| branches: | |
| - master | |
| - '[0-9]+.[0-9]+.x' | |
| jobs: | |
| build: | |
| if: github.repository != 'micronaut-projects/micronaut-project-template' | |
| runs-on: ubuntu-latest | |
| strategy: | |
| matrix: | |
| java: ['25'] | |
| env: | |
| DEVELOCITY_ACCESS_KEY: ${{ github.event.pull_request == null && secrets.GRADLE_ENTERPRISE_ACCESS_KEY || '' }} | |
| DEVELOCITY_CACHE_USERNAME: ${{ github.event.pull_request == null && secrets.GRADLE_ENTERPRISE_CACHE_USERNAME || '' }} | |
| DEVELOCITY_CACHE_PASSWORD: ${{ github.event.pull_request == null && secrets.GRADLE_ENTERPRISE_CACHE_PASSWORD || '' }} | |
| GH_TOKEN_PUBLIC_REPOS_READONLY: ${{ github.event.pull_request == null && secrets.GH_TOKEN_PUBLIC_REPOS_READONLY || '' }} | |
| GH_USERNAME: ${{ github.event.pull_request == null && secrets.GH_USERNAME || '' }} | |
| TESTCONTAINERS_RYUK_DISABLED: true | |
| SONAR_TOKEN: ${{ github.event.pull_request == null && secrets.SONAR_TOKEN || '' }} | |
| GITHUB_TOKEN: ${{ github.event.pull_request == null && github.token || '' }} | |
| OSS_INDEX_USERNAME: ${{ github.event.pull_request == null && secrets.OSS_INDEX_USERNAME || '' }} | |
| OSS_INDEX_PASSWORD: ${{ github.event.pull_request == null && secrets.OSS_INDEX_PASSWORD || '' }} | |
| steps: | |
| # https://github.com/actions/virtual-environments/issues/709 | |
| - name: Remove system JDKs | |
| run: | | |
| sudo rm -rf /usr/lib/jvm/* | |
| unset JAVA_HOME | |
| export PATH=$(echo "$PATH" | tr ':' '\n' | grep -v '/usr/lib/jvm' | paste -sd:) | |
| - name: "🗑 Free disk space" | |
| run: | | |
| sudo rm -rf "/usr/local/share/boost" | |
| sudo rm -rf "$AGENT_TOOLSDIRECTORY" | |
| sudo rm -rf "/opt/ghc" | |
| sudo rm -rf "/usr/share/dotnet" | |
| sudo rm -rf "/usr/local/lib/android" | |
| sudo apt-get clean | |
| df -h | |
| - name: "📥 Checkout repository" | |
| uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 | |
| with: | |
| fetch-depth: 0 | |
| - name: "🔧 Setup GraalVM CE" | |
| uses: graalvm/setup-graalvm@60c26726de13f8b90771df4bc1641a52a3159994 # v1 | |
| with: | |
| distribution: 'graalvm' | |
| java-version: ${{ matrix.java }} | |
| github-token: ${{ github.token }} | |
| - name: "🔧 Setup Gradle" | |
| uses: gradle/actions/setup-gradle@50e97c2cd7a37755bbfafc9c5b7cafaece252f6e # v6 | |
| - name: "❓ Optional setup step" | |
| run: | | |
| [ -f ./setup.sh ] && ./setup.sh || [ ! -f ./setup.sh ] | |
| - name: "🚔 Sonatype Scan" | |
| if: env.OSS_INDEX_PASSWORD != '' && matrix.java == '25' | |
| id: sonatypescan | |
| run: | | |
| ./gradlew ossIndexAudit --no-parallel --info | |
| - name: "❓ Optional cleanup step" | |
| run: | | |
| [ -f ./cleanup.sh ] && ./cleanup.sh || [ ! -f ./cleanup.sh ] |