opentelemetry-cpp 1.26.0 #121847
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This file is synced from the `.github` repository, do not modify it directly. | |
| name: Actionlint | |
| on: | |
| push: | |
| branches: | |
| - main | |
| - master | |
| pull_request: | |
| defaults: | |
| run: | |
| shell: bash -xeuo pipefail {0} | |
| concurrency: | |
| group: "actionlint-${{ github.ref }}" | |
| cancel-in-progress: ${{ github.event_name == 'pull_request' }} | |
| env: | |
| HOMEBREW_DEVELOPER: 1 | |
| HOMEBREW_NO_AUTO_UPDATE: 1 | |
| HOMEBREW_NO_ENV_HINTS: 1 | |
| permissions: {} | |
| jobs: | |
| workflow_syntax: | |
| if: github.repository_owner == 'Homebrew' | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: read | |
| container: | |
| image: ghcr.io/homebrew/brew:main | |
| steps: | |
| - name: Set up Homebrew | |
| id: setup-homebrew | |
| uses: Homebrew/actions/setup-homebrew@main | |
| with: | |
| core: false | |
| cask: false | |
| - uses: Homebrew/actions/cache-homebrew-prefix@main | |
| # Don't cache the prefix for the formulae.brew.sh repository as it won't download its own JSON API files | |
| if: github.repository != 'Homebrew/formulae.brew.sh' | |
| with: | |
| install: actionlint shellcheck zizmor | |
| # Not needed in .github but required for other repositories with multiple uses of cache-homebrew-prefix. | |
| workflow-key: actionlint | |
| - name: Install tools | |
| if: github.repository == 'Homebrew/formulae.brew.sh' | |
| run: brew install actionlint shellcheck zizmor | |
| - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 | |
| with: | |
| persist-credentials: false | |
| - run: zizmor --format sarif . > results.sarif | |
| env: | |
| GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Upload SARIF file | |
| uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 | |
| # We can't use the SARIF file when triggered by `merge_group` so we don't upload it. | |
| if: always() && github.event_name != 'merge_group' | |
| with: | |
| name: results.sarif | |
| path: results.sarif | |
| - name: Set up actionlint | |
| run: | | |
| # In homebrew-core, setting `shell: /bin/bash` prevents shellcheck from running on | |
| # those steps, so let's change them to `shell: bash` temporarily for better linting. | |
| sed -i 's|shell: /bin/bash -x|shell: bash -x|' .github/workflows/*.y*ml | |
| # In homebrew-core, the JSON matcher needs to be accessible to the container host. | |
| cp "$(brew --repository)/.github/actionlint-matcher.json" "$HOME" | |
| echo "::add-matcher::$HOME/actionlint-matcher.json" | |
| - run: actionlint | |
| upload_sarif: | |
| needs: workflow_syntax | |
| # We want to always upload this even if `actionlint` failed. | |
| # This is only available on public repositories. | |
| if: > | |
| always() && | |
| !contains(fromJSON('["cancelled", "skipped"]'), needs.workflow_syntax.result) && | |
| !github.event.repository.private && | |
| github.event_name != 'merge_group' | |
| runs-on: ubuntu-slim | |
| permissions: | |
| contents: read | |
| security-events: write | |
| steps: | |
| - name: Download SARIF file | |
| uses: actions/download-artifact@70fc10c6e5e1ce46ad2ea6f2b72d43f7d47b13c3 # v8.0.0 | |
| with: | |
| name: results.sarif | |
| path: results.sarif | |
| - name: Upload SARIF file | |
| uses: github/codeql-action/upload-sarif@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6 | |
| with: | |
| sarif_file: results.sarif | |
| category: zizmor |