opensource/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2025-06-24 11:28:24 +08:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #21470 from cevich/simpler_to_read_followup

Browse Source 
Secret-scanning followup fixes
This commit is contained in:
openshift-merge-bot[bot]
2024-02-07 21:12:45 +00:00
committed by GitHub
parent 4b90bfbe36 c5c0799329
commit c935f68903
1 changed files with 8 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
.github/workflows/scan-secrets.yml vendored
View File

@ -77,16 +77,22 @@ jobs:
# Provide handy URL for examination of secret leaks for all events that
# trigger this action.
- if: github.event_name == 'synchronize' || github.base_ref == ''
- if: github.event.action == 'synchronize' || github.base_ref == ''
name: Provide URL showing code that needs human eyes (force-push or merge)
shell: bash
run: |
if [[ "$before" =~ ^0000+ ]]; then # Push to new branch (i.e. renovate branch)
echo "Please review newly opened branch for secret-leaks:"
# The event JSON provides the URL we need
jq -r -e '.compare' $GITHUB_EVENT_PATH
return 0
fi
echo "Please review force-push or merged-pr changes for secret-leaks:"
before=$(jq -r -e '.before' $GITHUB_EVENT_PATH)
after=$(jq -r -e '.after' $GITHUB_EVENT_PATH)
echo "https://github.com/${{ github.repository }}/compare/${before}...${after}"
- if: github.event_name == 'opened'
- if: github.event.action == 'opened'
name: Provide URL showing code that needs human eyes (newly opened PR)
shell: bash
run: |