Skip to content

build(deps): bump tj-actions/changed-files from 45.0.4 to 45.0.5 in the dependencies group #493

build(deps): bump tj-actions/changed-files from 45.0.4 to 45.0.5 in the dependencies group

build(deps): bump tj-actions/changed-files from 45.0.4 to 45.0.5 in the dependencies group #493

Workflow file for this run

# PR単位で差分があるファイルに対してSecretlint(シークレットスキャンツール)を実行し、
# アクセストークンなど秘匿すべき値をPRコメントで指摘するワークフローです
# 詳細は以下のドキュメントをご参照ください
# https://andpad-dev.esa.io/posts/8984
name: secretlint
on:
pull_request
concurrency:
group: ${{ github.workflow }}-${{ github.ref }}
cancel-in-progress: true
jobs:
secretlint:
name: secretlint
runs-on: ubuntu-latest
# Skip any PR created by dependabot to avoid permission issues
if: (github.actor != 'dependabot[bot]')
steps:
- name: Check out code
uses: actions/checkout@v4 # v3.5.3
with:
fetch-depth: 0
- uses: reviewdog/action-setup@3f401fe1d58fe77e10d665ab713057375e39b887 # v1.3.0
- id: changed-files
uses: tj-actions/changed-files@bab30c2299617f6615ec02a68b9a40d10bd21366 # v45.0.5
- name: Run secretlint
if: steps.changed-files.outputs.all_changed_files_count != '0'
env:
REVIEWDOG_GITHUB_API_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: |
docker run \
-v $(pwd):/workdir \
-w /workdir \
secretlint/secretlint:v7.0.2@sha256:f0b1a4944a6a0f3d6a494c063b807ff6febc762f6fdf52466b2b8e3b278966d2 \
secretlint --format checkstyle ${{ steps.changed-files.outputs.all_changed_files }} \
| sed 's#="/workdir/#="#g' \
| reviewdog -f=checkstyle -reporter=github-pr-review -diff="git diff FETCH_HEAD"