Skip to content
@equisoft-actions

Equisoft Actions

README.md

Workflows

docker-workflows

Security

Regroups docker-sast and docker-sbom actions to run on a published Docker image.

kotlin-workflows

Micronaut-gradle

Runs various checks for Kotlin code (e.g. static analysis, license check, tests, etc.). Can also build and push docker images.

php-workflows

PHP Application

Runs various checks for PHP code (e.g. phpcs, psalm) and optional frontend code (e.g. eslint, mocha).

PHP Library

Runs various checks for PHP code (e.g. phpcs, psalm).

PHP Security

Regroups psalm-taint-analysis and composer-sbom actions.

python-workflows

Python Pipenv

Runs various checks for Python repos that uses Pipenv (e.g. unit tests, type checking, code style, etc.).

Python Security

Wraps CodeQL actions.

js-workflows

Webapp-frontend

Runs various checks for JS code (e.g. eslint, stylelint, tests, etc.). Can also build and push docker images.

Actions

Misc

application-metadata

Resolves common application metadata like the application version or whether it is publishable (by our standards).

jacoco-report

Publishes the JaCoCo report as a comment in the Pull Request.

notify-workflow-status

Pushes a whole workflow result to a Slack webhook.

with-asdf-vm

Downloads asdf-vm with cache. Initialize JAVA_HOME if java is specified in .tool-version.

Security

scan-secrets

Scans commits for leaked secrets. By default, pull request events will only scan new commits and push events will scan all commits.

Docker

docker-build-and-push

Builds a container image and optionally push it. Labels and tags will be configured as per the OCI standards.

docker-metadata

Resolves docker metadata such as tags and OCI labels.

docker-sast

Utilizes Dockle to generate a SARIF report. The report is archived and uploaded to Defect Dojo.

docker-sbom

Utilizes Tern to generate a SBOM. This SBOM will then be archived and uploaded to Dependency-Track.

hadolint

Runs Hadolint Dockerfile linting tool.

Gradle

generate-openapi-sdk

Runs our OpenApi-SDK gradle tasks to generate and publish a SDK. See https://github.com/kronostechnologies/standards/tree/master/gradle/openapi-sdk.

gradle-jacoco-check

Runs a gradle task expecting JaCoCo reports to be produced. The exported reports will follow naming conventions detailed by our ADRs (https://confluence.equisoft.com/display/HRMI/ADR).

gradle-junit

Runs a gradle task expecting JUnit reports to be produced. The exported reports will follow naming conventions detailed by our ADRs (https://confluence.equisoft.com/display/HRMI/ADR).

gradle-license-check

Checks Gradle dependencies licenses on the project. This action requires the global-conventions plugin to be installed.

gradle-sbom

Utilizes CycloneDX to generate a SBOM. This SBOM will then be archived and uploaded to Dependency-Track.

Go

golang-sast

Runs GoKart to generate a SAST report of your codebase. Results are published to DefectDojo.

PHP

composer

Install dependencies with composer (composer install)

composer-sbom

Utilizes cyclonedx-php-composer to generate a SBOM. This SBOM will then be archived and uploaded to Dependency-Track.

setup-php

Setup PHP with extensions.

phpcs

Lint PHP with PHP_CodeSniffer

phpunit

Runs PHPUnit and outputs a JUnit report, and a Clover report for coverage.

psalm

Runs psalm

psalm-taint-analysis

Runs psalm with --taint-analysis and upload SARIF file artifact.

Python

setup-python

Install Python dependencies with Pipenv.

pipenv-sbom

Utilizes cyclonedx-python to generate a SBOM. This SBOM will then be archived and uploaded to Dependency-Track. Prerequisite: pipenv install -d cyclonedx-bom.

NodeJS

nodejs-application-metadata

Resolves common application metadata like the application version or whether it is publishable (by our standards).

yarn-eslint

Runs a yarn task expecting eslint reports to be produced. The exported reports will follow naming conventions detailed by our ADRs (https://confluence.equisoft.com/display/HRMI/ADR).
A report named build/eslint/junit.xml is expected under all circumstances.

yarn-install

Install Yarn dependencies with Yarn. By default, the action will use a rolling cache key to prevent the cache size from snowballing.

yarn-jest

Runs a yarn task expecting jest reports and coverage data to be produced. The reports will follow naming conventions detailed by our ADRs (https://confluence.equisoft.com/display/HRMI/ADR).
Report named build/jest/junit.xml with build/jest/coverage/clover.xml are expected under all circumstances.

yarn-mocha

Runs a yarn task expecting mocha reports and coverage data to be produced. The reports will follow naming conventions detailed by our ADRs (https://confluence.equisoft.com/display/HRMI/ADR).
Report named build/mocha/junit.xml with build/mocha/coverage/clover.xml are expected under all circumstances.

yarn-npm-login

Login to any NPM Registry with yarn.

yarn-stylelint

Runs a yarn task expecting stylelint reports to be produced. The exported reports will follow naming conventions detailed by our ADRs (https://confluence.equisoft.com/display/HRMI/ADR).
A report named build/stylelint/junit.xml is expected under all circumstances.

Popular repositories Loading

  1. docker-sbom docker-sbom Public

    Action to ouput sbom report on a Docker image

    Shell 2

  2. gradle-sbom gradle-sbom Public

    Executes a predefined Gradle task to generate a SBOM and uploads it to Dependency Track

    1

  3. composer composer Public

    PHP Composer github action

  4. php-workflows php-workflows Public

    Github workflows for PHP

  5. psalm-taint-analysis psalm-taint-analysis Public

    Psalm Taint analysis github action

  6. setup-php setup-php Public

    shivammathur/setup-php github action with cache

Repositories

Showing 10 of 50 repositories
  • sarif-annotator Public

    Parse SARIF files and output annotations

    equisoft-actions/sarif-annotator’s past year of commit activity
    TypeScript 0 MIT 0 3 0 Updated Nov 26, 2024
  • notify-workflow-status Public
    equisoft-actions/notify-workflow-status’s past year of commit activity
    JavaScript 0 0 1 1 Updated Nov 26, 2024
  • docker-sast Public

    Action to run SAST on Docker images and ouput a SARIF report

    equisoft-actions/docker-sast’s past year of commit activity
    Shell 0 Apache-2.0 0 1 0 Updated Nov 25, 2024
  • docker-sbom Public

    Action to ouput sbom report on a Docker image

    equisoft-actions/docker-sbom’s past year of commit activity
    Shell 2 Apache-2.0 0 1 0 Updated Nov 25, 2024
  • action-pr-title Public Forked from deepakputhraya/action-pr-title

    Github action to enforce Pull Request title conventions

    equisoft-actions/action-pr-title’s past year of commit activity
    JavaScript 0 MIT 78 0 0 Updated Nov 18, 2024
  • terraform-workflows Public archive
    equisoft-actions/terraform-workflows’s past year of commit activity
    0 MIT 0 1 0 Updated Nov 18, 2024
  • common-workflows Public archive
    equisoft-actions/common-workflows’s past year of commit activity
    0 MIT 0 1 0 Updated Nov 8, 2024
  • .github Public
    equisoft-actions/.github’s past year of commit activity
    0 0 1 1 Updated Nov 6, 2024
  • phpunit Public
    equisoft-actions/phpunit’s past year of commit activity
    0 Apache-2.0 0 1 1 Updated Nov 3, 2024
  • yarn-mocha Public

    Run mocha through yarn and upload report

    equisoft-actions/yarn-mocha’s past year of commit activity
    0 Apache-2.0 0 1 1 Updated Nov 3, 2024
View all repositories

People

This organization has no public members. You must be a member to see who’s a part of this organization.

Top languages

Loading…

Most used topics

Loading…