sharang
6db9c7645e
ci / shared (push) Failing after 7s
Bootstraps §1.2 scaffolding (README, CONTRIBUTING, CODEOWNERS, CHANGELOG, PR + issue templates, LICENSE, CI workflow, release workflow, commitlint, cliff, .editorconfig, .gitignore, .env.example) and ships a proprietary all-rights-reserved LICENSE naming both founders. Refs: M0.1
32 lines
737 B
YAML
32 lines
737 B
YAML
# CI skeleton (TypeScript shape; no app code yet).
|
|
# Lights up to commitlint + gitleaks + trivy fs scan. Add lint/test/build jobs
|
|
# when this repo grows real package code.
|
|
name: ci
|
|
|
|
on:
|
|
pull_request:
|
|
branches: [main]
|
|
push:
|
|
branches: [main]
|
|
|
|
jobs:
|
|
shared:
|
|
runs-on: docker
|
|
steps:
|
|
- uses: actions/checkout@v4
|
|
with: { fetch-depth: 0 }
|
|
|
|
- name: commitlint (PR only)
|
|
if: github.event_name == 'pull_request'
|
|
uses: wagoid/commitlint-github-action@v6
|
|
|
|
- name: gitleaks
|
|
uses: gitleaks/gitleaks-action@v2
|
|
|
|
- name: trivy fs scan
|
|
uses: aquasecurity/trivy-action@master
|
|
with:
|
|
scan-type: fs
|
|
severity: HIGH,CRITICAL
|
|
exit-code: 1
|