From acbece29b713a7b445da19ba63444ec0bba40d1c Mon Sep 17 00:00:00 2001 From: Phong Nguyen Date: Tue, 10 Sep 2024 16:52:59 +0700 Subject: [PATCH] GitHub Action: Scan Nuget Packages --- .../scan-dependencies-microservices.yml | 33 +++++++++++++++++++ .../scan-dependencies-modularmonolith.yml | 33 +++++++++++++++++++ .../workflows/scan-dependencies-monolith.yml | 33 +++++++++++++++++++ ...r.yml => scan-dependencies-ui-angular.yml} | 0 ...s.yml => scan-dependencies-ui-reactjs.yml} | 0 ...ejs.yml => scan-dependencies-ui-vuejs.yml} | 0 6 files changed, 99 insertions(+) create mode 100644 .github/workflows/scan-dependencies-microservices.yml create mode 100644 .github/workflows/scan-dependencies-modularmonolith.yml create mode 100644 .github/workflows/scan-dependencies-monolith.yml rename .github/workflows/{scan-dependencies-angular.yml => scan-dependencies-ui-angular.yml} (100%) rename .github/workflows/{scan-dependencies-reactjs.yml => scan-dependencies-ui-reactjs.yml} (100%) rename .github/workflows/{scan-dependencies-vuejs.yml => scan-dependencies-ui-vuejs.yml} (100%) diff --git a/.github/workflows/scan-dependencies-microservices.yml b/.github/workflows/scan-dependencies-microservices.yml new file mode 100644 index 00000000..10bc309d --- /dev/null +++ b/.github/workflows/scan-dependencies-microservices.yml @@ -0,0 +1,33 @@ +name: Scan Dependencies Microservices + +on: + push: + paths: + - 'src/Microservices/**' + pull_request: + paths: + - 'src/Microservices/**' + schedule: + - cron: '0 * * * *' + +jobs: + build: + + defaults: + run: + working-directory: src/Microservices + + runs-on: ubuntu-latest + + steps: + - uses: actions/checkout@v2 + - name: Setup .NET Core + uses: actions/setup-dotnet@v1 + with: + dotnet-version: 8.0.100 + + - name: dotnet restore + run: dotnet restore + + - name: dotnet list package --vulnerable + run: dotnet list package --vulnerable diff --git a/.github/workflows/scan-dependencies-modularmonolith.yml b/.github/workflows/scan-dependencies-modularmonolith.yml new file mode 100644 index 00000000..0f1d52cb --- /dev/null +++ b/.github/workflows/scan-dependencies-modularmonolith.yml @@ -0,0 +1,33 @@ +name: Scan Dependencies Modular Monolith + +on: + push: + paths: + - 'src/ModularMonolith/**' + pull_request: + paths: + - 'src/ModularMonolith/**' + schedule: + - cron: '0 * * * *' + +jobs: + build: + + defaults: + run: + working-directory: src/ModularMonolith + + runs-on: ubuntu-latest + + steps: + - uses: actions/checkout@v2 + - name: Setup .NET Core + uses: actions/setup-dotnet@v1 + with: + dotnet-version: 8.0.100 + + - name: dotnet restore + run: dotnet restore + + - name: dotnet list package --vulnerable + run: dotnet list package --vulnerable \ No newline at end of file diff --git a/.github/workflows/scan-dependencies-monolith.yml b/.github/workflows/scan-dependencies-monolith.yml new file mode 100644 index 00000000..c00db227 --- /dev/null +++ b/.github/workflows/scan-dependencies-monolith.yml @@ -0,0 +1,33 @@ +name: Scan Dependencies Monolith + +on: + push: + paths: + - 'src/Monolith/**' + pull_request: + paths: + - 'src/Monolith/**' + schedule: + - cron: '0 * * * *' + +jobs: + build: + + defaults: + run: + working-directory: src/Monolith + + runs-on: ubuntu-latest + + steps: + - uses: actions/checkout@v2 + - name: Setup .NET Core + uses: actions/setup-dotnet@v1 + with: + dotnet-version: 8.0.100 + + - name: dotnet restore + run: dotnet restore + + - name: dotnet list package --vulnerable + run: dotnet list package --vulnerable diff --git a/.github/workflows/scan-dependencies-angular.yml b/.github/workflows/scan-dependencies-ui-angular.yml similarity index 100% rename from .github/workflows/scan-dependencies-angular.yml rename to .github/workflows/scan-dependencies-ui-angular.yml diff --git a/.github/workflows/scan-dependencies-reactjs.yml b/.github/workflows/scan-dependencies-ui-reactjs.yml similarity index 100% rename from .github/workflows/scan-dependencies-reactjs.yml rename to .github/workflows/scan-dependencies-ui-reactjs.yml diff --git a/.github/workflows/scan-dependencies-vuejs.yml b/.github/workflows/scan-dependencies-ui-vuejs.yml similarity index 100% rename from .github/workflows/scan-dependencies-vuejs.yml rename to .github/workflows/scan-dependencies-ui-vuejs.yml