Skip to content

Commit

Permalink
Merge pull request #1170 from atsign-foundation/cpswan-ovs-scanner
Browse files Browse the repository at this point in the history 
feat: Add osv-scanner to unit tests
  • Loading branch information
@gkc
gkc authored Nov 21, 2023
2 parents 4a6e3cf + e98185f commit 980ae23
Showing 1 changed file with 13 additions and 0 deletions.
13 changes: 13 additions & 0 deletions .github/workflows/at_client_sdk.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -28,6 +28,9 @@ jobs:
- uses: dart-lang/setup-dart@b64355ae6ca0b5d484f0106a033dd1388965d06d # v1.6.0
with:
sdk: stable
- uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
with:
go-version: 'stable'

# Install dependencies in at_client library
- name: Install dependencies in at_client
Expand Down Expand Up @@ -90,6 +93,16 @@ jobs:
working-directory: packages
run: dart format . -o none --set-exit-if-changed

# Runs osv-scanner to find any vulnerable Dart dependencies
# It needs to look at pubspec.lock files, which is why it's
# placed here, as the `dart pub get` above will create them
- name: Run osv-scanner
working-directory: packages
run: |
go install github.com/google/osv-scanner/cmd/osv-scanner@6316373e47d7e3e4b4fd3630c4bbc10987738de6 # v1.4.3
osv-scanner --lockfile=./at_client/pubspec.lock
osv-scanner --lockfile=./at_client_mobile/pubspec.lock
functional_tests:
runs-on: ubuntu-latest
steps:
Expand Down

0 comments on commit 980ae23

Please sign in to comment.