Add snyk #32

Workflow file for this run

.github/workflows/wordpress.yml at e852b0b

	name: Deploy Plugin

	on:
	push:
	branches:
	- main
	tags:
	- '*'
	pull_request:
	branches:
	- main

	jobs:
	test:
	uses: tarosky/workflows/.github/workflows/phpcs.yml@main
	with:
	version: 7.2

	assets:
	name: Assets Test
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@main

	- name: Install Node
	uses: actions/setup-node@v3
	with:
	node-version: '16'

	- name: Install NPM Packages
	run: npm install

	- name: Check JS & CSS syntax
	run: npm run lint

	phplint:
	uses: tarosky/workflows/.github/workflows/phplint.yml@main

	security:
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@main

	- name: Setup PHP
	uses: shivammathur/setup-php@v2
	with:
	php-version: 7.2
	tools: composer
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

	- name: Install package to generate composer.lock
	run: composer install --no-dev --prefer-dist

	- name: Run Snyk to check for vulnerabilities
	uses: snyk/actions/php@master
	env:
	SNYK_TOKEN: ${{ secrets.SNYK_TOKEN_FUMIKI }}
	with:
	args: --all-projects

	release:
	name: Deploy WordPress.org
	needs: [ test, assets, phplint ]
	if: contains(github.ref, 'tags/')
	runs-on: ubuntu-latest
	steps:
	- name: Checkout code
	uses: actions/checkout@main

	- name: Setup PHP
	uses: shivammathur/setup-php@v2
	with:
	php-version: 7.2
	tools: composer
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

	- name: Install Node
	uses: actions/setup-node@v3
	with:
	node-version: '16'

	- name: Build Plugin
	run: \|
	composer install --prefer-dist --no-dev
	npm install
	npm run package

	- name: Generate readme.txt
	uses: tarosky/workflows/actions/wp-readme@main

	- name: Versioning
	uses: tarosky/workflows/actions/versioning@main
	with:
	version: ${{ github.ref }}
	files: readme.txt,taro-series.php

	- name: Deploy to WordPress Directory
	id: deploy
	uses: 10up/action-wordpress-plugin-deploy@stable
	with:
	generate-zip: true
	env:
	SVN_USERNAME: ${{ secrets.WP_ORG_USERNAME_TAROSKY }}
	SVN_PASSWORD: ${{ secrets.WP_ORG_PASSWORD_TAROSKY }}

	- name: Create Release
	id: create_release
	uses: actions/create-release@v1.0.0
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	with:
	tag_name: ${{ github.ref }}
	release_name: Release ${{ github.ref }}
	draft: false
	prerelease: false

	- name: Upload release asset
	uses: actions/upload-release-asset@v1.0.1
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	with:
	upload_url: ${{ steps.create_release.outputs.upload_url }}
	asset_path: ${{ github.workspace }}/${{ github.event.repository.name }}.zip
	asset_name: ${{ github.event.repository.name }}.zip
	asset_content_type: application/zip

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add snyk #32

Workflow file

Add snyk #32

Jobs

Run details

Workflow file for this run