Skip to content

ci(github-action): update renovatebot/github-action to v40.1.7 (#2742) #4180

ci(github-action): update renovatebot/github-action to v40.1.7 (#2742)

ci(github-action): update renovatebot/github-action to v40.1.7 (#2742) #4180

Workflow file for this run

---
# yaml-language-server: $schema=https://json.schemastore.org/github-workflow.json
name: MegaLinter
on:
push:
workflow_dispatch:
jobs:
build:
name: MegaLinter
runs-on: ubuntu-latest
steps:
# https://github.com/marketplace/actions/harden-runner
- name: Harden Runner
uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0
with:
egress-policy: audit
# https://github.com/marketplace/actions/checkout
- name: Checkout Repository
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
with:
fetch-depth: 0
# https://github.com/marketplace/actions/create-github-app-token
- name: Generate Token
uses: actions/create-github-app-token@78e5f2ddc08efcb88fbbee6cfa3fed770ba550c3 # v1.9.1
id: app-token
with:
app-id: "${{ secrets.BOT_APP_ID }}"
private-key: "${{ secrets.BOT_APP_PRIVATE_KEY }}"
# https://github.com/marketplace/actions/megalinter
- name: MegaLinter
uses: oxsecurity/megalinter/flavors/terraform@a7a0163b6c8ff7474a283d99a706e27483ddd80f # v7.10.0
env:
VALIDATE_ALL_CODEBASE: ${{ github.event_name == 'workflow_dispatch' }}
GITHUB_TOKEN: "${{ steps.app-token.outputs.token }}"
# GITHUB_STATUS_REPORTER only works if VALIDATE_ALL_CODEBASE is false!
GITHUB_STATUS_REPORTER: true
REPORTERS_MARKDOWN_TYPE: simple
SHOW_ELAPSED_TIME: false
SHOW_SKIPPED_LINTERS: true