diff --git a/.github/workflows/build-and-publish.yaml b/.github/workflows/build-and-publish.yaml index bc135be..80860b9 100644 --- a/.github/workflows/build-and-publish.yaml +++ b/.github/workflows/build-and-publish.yaml @@ -5,23 +5,30 @@ on: inputs: release_type: type: choice - description: The type of release + description: 'The type of release' options: - - Major - - Minor - - Patch - Snapshot + - Patch + - Minor + - Major + vulnerability_failure_severity: + description: The severity to fail the workflow if such vulnerability is detected. DO NOT override it unless a Jira ticket is raised. + type: choice + options: + - CRITICAL,HIGH + - CRITICAL,HIGH,MEDIUM + - CRITICAL (DO NOT use if JIRA ticket not raised) publish_to_maven: - description: True to publish the artifacts to Maven repository, false to skip the step - default: false + description: 'True to publish the artifacts to Maven repository, false to skip the step' + default: true required: false type: boolean java_version: type: string - default: 11 + default: '21' publish_vulnerabilities: type: string - default: true + default: 'true' jobs: build-and-pubish: @@ -32,5 +39,6 @@ jobs: publish_to_maven: ${{ inputs.publish_to_maven }} java_version: ${{ inputs.java_version }} publish_vulnerabilities: ${{ inputs.publish_vulnerabilities }} + vulnerability_failure_severity: ${{ inputs.vulnerability_failure_severity }} working_dir: attestation-aws secrets: inherit diff --git a/.github/workflows/build-and-test.yaml b/.github/workflows/build-and-test.yaml index 4d63f6a..44d6005 100644 --- a/.github/workflows/build-and-test.yaml +++ b/.github/workflows/build-and-test.yaml @@ -7,3 +7,4 @@ jobs: secrets: inherit with: working_dir: attestation-aws/ + java_version: 21 diff --git a/attestation-aws/pom.xml b/attestation-aws/pom.xml index 2399f80..70a4da3 100644 --- a/attestation-aws/pom.xml +++ b/attestation-aws/pom.xml @@ -1,156 +1,170 @@ - + - 4.0.0 + 4.0.0 - com.uid2 - attestation-aws - 2.0.0-f7c174410e + com.uid2 + attestation-aws + 2.0.0-f7c174410e - ${project.groupId}:${project.artifactId} - AWS Enclave attestation - https://github.com/IABTechLab/uid2docs - jar + ${project.groupId}:${project.artifactId} + AWS Enclave attestation + https://github.com/IABTechLab/uid2docs + jar - - - The Apache License, Version 2.0 - http://www.apache.org/licenses/LICENSE-2.0.txt - - + + + The Apache License, Version 2.0 + http://www.apache.org/licenses/LICENSE-2.0.txt + + - - - UID2 team - unifiedid-admin@thetradedesk.com - UID - https://github.com/IABTechLab/uid2docs - - - - scm:get:ssh://github.com:IABTechLab/nsm-java.git - scm:get:ssh://github.com:IABTechLab/nsm-java.git - https://github.com/IABTechLab/nsm-java - - - - com.uid2 - uid2-attestation-api - 2.0.0-f968aec0e3 - - + + + UID2 team + unifiedid-admin@thetradedesk.com + UID + https://github.com/IABTechLab/uid2docs + + + + scm:get:ssh://github.com:IABTechLab/nsm-java.git + scm:get:ssh://github.com:IABTechLab/nsm-java.git + https://github.com/IABTechLab/nsm-java + + + ${project.version} + 21 + 21 + 21 + - - - snapshots-repo - https://s01.oss.sonatype.org/content/repositories/snapshots - false - true - - - - - ossrh - https://s01.oss.sonatype.org/content/repositories/snapshots - - + + + com.uid2 + uid2-attestation-api + 2.1.6 + + - - - - org.jacoco - jacoco-maven-plugin - 0.8.8 - - - - prepare-agent - - - - - - org.apache.maven.plugins - maven-compiler-plugin - - 6 - 6 - - - - org.sonatype.plugins - nexus-staging-maven-plugin - 1.6.7 - true - - ossrh - https://s01.oss.sonatype.org/ - false - - - - org.apache.maven.plugins - maven-source-plugin - - - attach-sources - - jar - - - - - - org.apache.maven.plugins - maven-resources-plugin - 2.5 - - UTF-8 - - - - org.apache.maven.plugins - maven-javadoc-plugin - 3.3.2 - - - attach-javadocs - - jar - - - - - - org.codehaus.mojo - properties-maven-plugin - 1.0.0 - - - generate-resources - - write-project-properties - - - ${project.build.outputDirectory}/${project.artifactId}.properties - - - - - - org.apache.maven.plugins - maven-gpg-plugin - 3.0.1 - - - sign-artifacts - verify - - sign - - - - - - + + + snapshots-repo + https://s01.oss.sonatype.org/content/repositories/snapshots + + false + + + true + + + + + + ossrh + https://s01.oss.sonatype.org/content/repositories/snapshots + + + + + + + org.jacoco + jacoco-maven-plugin + 0.8.12 + + + + prepare-agent + + + + + + org.apache.maven.plugins + maven-compiler-plugin + 3.13.0 + + 21 + 21 + + + + org.sonatype.plugins + nexus-staging-maven-plugin + 1.7.0 + true + + ossrh + https://s01.oss.sonatype.org/ + false + + + + org.apache.maven.plugins + maven-source-plugin + 3.3.1 + + + attach-sources + + jar + + + + + + org.apache.maven.plugins + maven-resources-plugin + 2.7 + + UTF-8 + + + + org.apache.maven.plugins + maven-javadoc-plugin + 3.8.0 + + + attach-javadocs + + jar + + + + + + org.codehaus.mojo + properties-maven-plugin + 1.2.1 + + + generate-resources + + write-project-properties + + + ${project.build.outputDirectory}/${project.artifactId}.properties + + + + + + org.apache.maven.plugins + maven-gpg-plugin + 3.2.4 + + + sign-artifacts + verify + + sign + + + + + +