Skip to content

add trivy.yml

add trivy.yml #285

name: Test Code Quality
on: # yamllint disable-line rule:truthy
push: null
pull_request: null
permissions: {}
jobs:
build:
name: Test Code Quality
runs-on: ubuntu-latest
permissions:
contents: read
packages: read
# To report GitHub Actions status checks
statuses: write
steps:
- name: Checkout code
uses: actions/checkout@v4
with:
# super-linter needs the full git history to get the
# list of files that changed across commits
fetch-depth: 0
- name: Super-linter
uses: super-linter/[email protected]
env:
VALIDATE_ALL_CODEBASE: false # only validate changed or updated files
VALIDATE_BASH_EXEC: false
#VALIDATE_CHECKOV: true
#VALIDATE_DOCKERFILE_HADOLINT: false
#VALIDATE_GITHUB_ACTIONS: false
VALIDATE_JSCPD: false # disable, copy paste detection fails when python decorators are used
VALIDATE_JAVASCRIPT_PRETTIER: false
VALIDATE_JAVASCRIPT_STANDARD: false
#VALIDATE_MARKDOWN: false
#VALIDATE_OPENAPI: false
VALIDATE_PYTHON_BLACK: false
VALIDATE_PYTHON_PYLINT: false
VALIDATE_PYTHON_ISORT: false
#VALIDATE_PYTHON_FLAKE8: false
VALIDATE_PYTHON_MYPY: false
VALIDATE_PYTHON_RUFF: false
VALIDATE_SHELL_SHFMT: false
# To report GitHub Actions status checks
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}