microsoft/hve-core
Publicmirrored from https://github.com/microsoft/hve-coreAvailable
.github/workflows/main.yml
65lines · modecode
| 1 | name: Main Branch CI |
| 2 | |
| 3 | on: |
| 4 | push: |
| 5 | branches: |
| 6 | - main |
| 7 | workflow_dispatch: |
| 8 | |
| 9 | # Minimal permissions for security |
| 10 | permissions: |
| 11 | contents: read |
| 12 | |
| 13 | jobs: |
| 14 | spell-check: |
| 15 | name: Spell Check |
| 16 | uses: ./.github/workflows/spell-check.yml |
| 17 | permissions: |
| 18 | contents: read |
| 19 | with: |
| 20 | soft-fail: false |
| 21 | |
| 22 | markdown-lint: |
| 23 | name: Markdown Lint |
| 24 | uses: ./.github/workflows/markdown-lint.yml |
| 25 | permissions: |
| 26 | contents: read |
| 27 | with: |
| 28 | soft-fail: false |
| 29 | |
| 30 | table-format: |
| 31 | name: Table Format Check |
| 32 | uses: ./.github/workflows/table-format.yml |
| 33 | permissions: |
| 34 | contents: read |
| 35 | with: |
| 36 | soft-fail: false |
| 37 | |
| 38 | dependency-pinning-scan: |
| 39 | name: Dependency Pinning Scan |
| 40 | uses: ./.github/workflows/dependency-pinning-scan.yml |
| 41 | permissions: |
| 42 | contents: read |
| 43 | security-events: write |
| 44 | with: |
| 45 | soft-fail: false |
| 46 | upload-sarif: true |
| 47 | upload-artifact: true |
| 48 | |
| 49 | release-please: |
| 50 | name: Release Please |
| 51 | needs: |
| 52 | - spell-check |
| 53 | - markdown-lint |
| 54 | - table-format |
| 55 | - dependency-pinning-scan |
| 56 | runs-on: ubuntu-latest |
| 57 | permissions: |
| 58 | contents: write |
| 59 | pull-requests: write |
| 60 | steps: |
| 61 | - name: Run release-please |
| 62 | uses: googleapis/release-please-action@16a9c90856f42705d54a6fda1823352bdc62cf38 # v4.4.0 |
| 63 | with: |
| 64 | config-file: release-please-config.json |
| 65 | manifest-file: .release-please-manifest.json |
| 66 | |