From 10d03fb42d3093f986e7e1a17278c1524efdbc60 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Jun 2024 18:03:27 -0700 Subject: [PATCH] Bump senzing-factory/build-resources from 1 to 2 (#43) * Bump senzing-factory/build-resources from 1 to 2 Bumps [senzing-factory/build-resources](https://github.com/senzing-factory/build-resources) from 1 to 2. - [Release notes](https://github.com/senzing-factory/build-resources/releases) - [Changelog](https://github.com/senzing-factory/build-resources/blob/main/CHANGELOG.md) - [Commits](https://github.com/senzing-factory/build-resources/compare/v1...v2) --- updated-dependencies: - dependency-name: senzing-factory/build-resources dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] * fix linting --------- Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Sam <109683132+kernelsam@users.noreply.github.com> --- .github/workflows/add-labels-standardized.yaml | 2 +- .github/workflows/add-to-project-factory-dependabot.yaml | 5 ++++- .github/workflows/add-to-project-factory.yaml | 2 +- .github/workflows/build-docker-container.yaml | 3 +++ .github/workflows/lint-repo.yaml | 9 ++++++++- .github/workflows/move-pr-to-done-dependabot.yaml | 2 +- Dockerfile | 5 +++++ 7 files changed, 23 insertions(+), 5 deletions(-) diff --git a/.github/workflows/add-labels-standardized.yaml b/.github/workflows/add-labels-standardized.yaml index 50687a5..01aa8a1 100644 --- a/.github/workflows/add-labels-standardized.yaml +++ b/.github/workflows/add-labels-standardized.yaml @@ -14,4 +14,4 @@ jobs: secrets: ORG_MEMBERSHIP_TOKEN: ${{ secrets.ORG_MEMBERSHIP_TOKEN }} SENZING_MEMBERS: ${{ secrets.SENZING_MEMBERS }} - uses: senzing-factory/build-resources/.github/workflows/add-labels-to-issue.yaml@v1 + uses: senzing-factory/build-resources/.github/workflows/add-labels-to-issue.yaml@v2 diff --git a/.github/workflows/add-to-project-factory-dependabot.yaml b/.github/workflows/add-to-project-factory-dependabot.yaml index 56f1cf4..72c301a 100644 --- a/.github/workflows/add-to-project-factory-dependabot.yaml +++ b/.github/workflows/add-to-project-factory-dependabot.yaml @@ -4,10 +4,13 @@ on: pull_request: branches: [main] +permissions: + repository-projects: write + jobs: add-to-project-dependabot: secrets: SENZING_GITHUB_PROJECT_RW_TOKEN: ${{ secrets.SENZING_GITHUB_PROJECT_RW_TOKEN }} - uses: senzing-factory/build-resources/.github/workflows/add-to-project-dependabot.yaml@v1 + uses: senzing-factory/build-resources/.github/workflows/add-to-project-dependabot.yaml@v2 with: project: ${{ vars.SENZING_PROJECT_FACTORY }} diff --git a/.github/workflows/add-to-project-factory.yaml b/.github/workflows/add-to-project-factory.yaml index ea5505b..04e3299 100644 --- a/.github/workflows/add-to-project-factory.yaml +++ b/.github/workflows/add-to-project-factory.yaml @@ -13,7 +13,7 @@ jobs: add-to-project: secrets: SENZING_GITHUB_PROJECT_RW_TOKEN: ${{ secrets.SENZING_GITHUB_PROJECT_RW_TOKEN }} - uses: senzing-factory/build-resources/.github/workflows/add-to-project.yaml@v1 + uses: senzing-factory/build-resources/.github/workflows/add-to-project.yaml@v2 with: classic: false project-number: ${{ vars.SENZING_PROJECT_FACTORY }} diff --git a/.github/workflows/build-docker-container.yaml b/.github/workflows/build-docker-container.yaml index 5de88a5..0115102 100644 --- a/.github/workflows/build-docker-container.yaml +++ b/.github/workflows/build-docker-container.yaml @@ -2,6 +2,9 @@ name: docker build container on: [push] +permissions: + contents: read + jobs: docker-build-container: runs-on: ubuntu-latest diff --git a/.github/workflows/lint-repo.yaml b/.github/workflows/lint-repo.yaml index fbfb108..4ec5e80 100644 --- a/.github/workflows/lint-repo.yaml +++ b/.github/workflows/lint-repo.yaml @@ -6,6 +6,13 @@ on: pull_request: branches: [main] +permissions: + contents: read + packages: read + pull-requests: read + statuses: write + + jobs: lint-code-base: - uses: senzing-factory/build-resources/.github/workflows/linter.yaml@v1 + uses: senzing-factory/build-resources/.github/workflows/linter.yaml@v2 diff --git a/.github/workflows/move-pr-to-done-dependabot.yaml b/.github/workflows/move-pr-to-done-dependabot.yaml index 603d08c..10f4f17 100644 --- a/.github/workflows/move-pr-to-done-dependabot.yaml +++ b/.github/workflows/move-pr-to-done-dependabot.yaml @@ -12,6 +12,6 @@ jobs: move-pr-to-done-dependabot: secrets: SENZING_GITHUB_PROJECT_RW_TOKEN: ${{ secrets.SENZING_GITHUB_PROJECT_RW_TOKEN }} - uses: senzing-factory/build-resources/.github/workflows/move-pr-to-done-dependabot.yaml@v1 + uses: senzing-factory/build-resources/.github/workflows/move-pr-to-done-dependabot.yaml@v2 with: project: ${{ vars.SENZING_PROJECT_FACTORY }} diff --git a/Dockerfile b/Dockerfile index 08cf5c5..aec20ad 100644 --- a/Dockerfile +++ b/Dockerfile @@ -6,5 +6,10 @@ RUN apk add --no-cache --no-progress curl jq # Copies your code file from your action repository to the filesystem path `/` of the container COPY entrypoint.sh /entrypoint.sh RUN chmod +x entrypoint.sh + +HEALTHCHECK CMD git --version || exit 1 + +USER 1001 + # Code file to execute when the docker container starts up (`entrypoint.sh`) ENTRYPOINT ["/entrypoint.sh"]