From c18ed8fae160145a602d658b8e40069c37866ec3 Mon Sep 17 00:00:00 2001 From: Jeff DiNoto Date: Wed, 9 Jun 2021 14:22:51 -0400 Subject: [PATCH] Fossa Integration * Integration of a GH action workflow that executes a Fossa scan on all pushes to the master branch * Analysis on all pushes to master helps to keep the commit hashes in sync between the two systems that are used for the public Fossa reports * Public dependency report will be available at https://app.fossa.com/reports/ee42f821-5e09-4347-8ffb-d4155b3f350b --- .fossa.yml | 14 ++++++++++++++ .github/workflows/license-check.yml | 17 +++++++++++++++++ README.md | 6 +++++- 3 files changed, 36 insertions(+), 1 deletion(-) create mode 100755 .fossa.yml create mode 100644 .github/workflows/license-check.yml diff --git a/.fossa.yml b/.fossa.yml new file mode 100755 index 0000000..323744a --- /dev/null +++ b/.fossa.yml @@ -0,0 +1,14 @@ +# Generated by FOSSA CLI (https://github.com/fossas/fossa-cli) +# Visit https://fossa.com to learn more + +version: 2 +cli: + server: https://app.fossa.com + fetcher: custom + project: reaper-client-go +analyze: + modules: + - name: github.com/k8ssandra/reaper-client-go/reaper + type: go + target: github.com/k8ssandra/reaper-client-go/reaper + path: reaper diff --git a/.github/workflows/license-check.yml b/.github/workflows/license-check.yml new file mode 100644 index 0000000..270c582 --- /dev/null +++ b/.github/workflows/license-check.yml @@ -0,0 +1,17 @@ +name: Dependency and License Scan +on: + push: + branches: + - master +jobs: + scan-repo: + runs-on: ubuntu-latest + steps: + - name: Check out code + uses: actions/checkout@v2 + - name: Install Fossa CLI + run: | + curl -H 'Cache-Control: no-cache' https://raw.githubusercontent.com/fossas/fossa-cli/master/install.sh | bash + - name: Scan for dependencies and licenses + run: | + FOSSA_API_KEY=${{ secrets.FOSSA_PUSH_ONLY_API_KEY }} fossa analyze diff --git a/README.md b/README.md index 68f9c55..34bced4 100644 --- a/README.md +++ b/README.md @@ -1,4 +1,8 @@ # reaper-client-go -A Go client library for the Cassandra Reaper REST API +A Go client library for the Reaper for Apache Cassandra® REST API **Build Status** [![CircleCI](https://circleci.com/gh/jsanda/reaper-client-go/tree/master.svg?style=svg)](https://circleci.com/gh/jsanda/reaper-client-go/tree/master) + +## Dependencies + +For information on the packaged dependencies of reaper-client-go and their licenses, check out our [open source report](https://app.fossa.com/reports/ee42f821-5e09-4347-8ffb-d4155b3f350b).