Skip to content

Update Trivy workflow #139

Update Trivy workflow

Update Trivy workflow #139

Workflow file for this run

# Copyright 2024 Oracle Corporation and/or its affiliates.
# Licensed under the Universal Permissive License v 1.0 as shown at
# https://oss.oracle.com/licenses/upl.
# ---------------------------------------------------------------------------
# Coherence CLI GitHub Actions CI build TLS.
# ---------------------------------------------------------------------------
name: CI - TLS
on:
workflow_dispatch:
push:
branches-ignore:
- gh-pages
jobs:
build:
runs-on: ubuntu-latest
# Checkout the source, we need a depth of zero to fetch all of the history otherwise
# the copyright check cannot work out the date of the files from Git.
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Get Docker Images
shell: bash
run: |
docker pull gcr.io/distroless/java17
- name: Set up JDK
uses: actions/setup-java@v4
with:
java-version: '17'
distribution: 'zulu'
- name: Cache Go Modules
uses: actions/cache@v4
with:
path: ~/go/pkg/mod
key: ${{ runner.os }}-go-mods-${{ hashFiles('**/go.sum') }}
restore-keys: |
${{ runner.os }}-go-mods-
- name: Cache Maven packages
uses: actions/cache@v4
with:
path: ~/.m2
key: ${{ runner.os }}-m2-${{ hashFiles('**/pom.xml') }}
restore-keys: ${{ runner.os }}-m2
- name: Set up Go
uses: actions/setup-go@v5
with:
go-version: '1.21'
- name: TLS Tests
shell: bash
run: |
export COHERENCE_TLS_CERTS_PATH=`pwd`/test/test_utils/certs/guardians-ca.crt
export COHERENCE_TLS_CLIENT_CERT=`pwd`/test/test_utils/certs/star-lord.crt
export COHERENCE_TLS_CLIENT_KEY=`pwd`/test/test_utils/certs/star-lord.key
COHERENCE_BASE_IMAGE=gcr.io/distroless/java17 COHERENCE_VERSION=24.03.1 PROFILES=,secure make clean certs build-test-images test-cluster-startup
echo "Sleeping 30..."
sleep 30
export PATH=`pwd`/bin:$PATH
make cohctl
cohctl set ignore-certs true
cohctl add cluster tls -u https://127.0.0.1:30000/management/coherence/cluster
cohctl get clusters
cohctl get members
cohctl remove cluster tls -y
- uses: actions/upload-artifact@v4
if: failure()
with:
name: test-output
path: build/_output/test-logs