Test changes in dependabot/gradle/com.microsoft.azure-msal4j-1.17.3: Bump com.microsoft.azure:msal4j from 1.17.2 to 1.17.3 Bumps [com.microsoft.azure:msal4j](https://github.com/AzureAD/microsoft-authentication-library-for-java) from 1.17.2 to 1.17.3. - [Release notes](https://github.com/AzureAD/microsoft-authentication-library-for-java/releases) - [Changelog](https://github.com/AzureAD/microsoft-authentication-library-for-java/blob/dev/changelog.txt) - [Commits](https://github.com/AzureAD/microsoft-auth... #203
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Java CI with Gradle | |
run-name: | | |
${{ github.event_name == 'pull_request' | |
&& format('Test changes in PR #{0}: {1}', github.event.pull_request.number, github.event.pull_request.title) | |
|| format('Test changes in {0}: {1}', github.ref_name, github.event.head_commit.message) }} | |
on: | |
push: | |
branches: | |
- "**" | |
tags-ignore: | |
- "**" | |
paths: | |
- "**.java" | |
- "**.json" | |
- "**.yml" | |
- "gradle**" | |
- "*.gradle" | |
pull_request: | |
paths: | |
- "**.java" | |
- "**.json" | |
- "**.yml" | |
- "gradle**" | |
- "*.gradle" | |
workflow_dispatch: | |
jobs: | |
build: | |
runs-on: ubuntu-latest | |
env: | |
VIRUSTOTAL_API_KEY: ${{ secrets.VIRUSTOTAL_API_KEY }} | |
IMGUR_CLIENT_ID: ${{ secrets.IMGUR_CLIENT_ID }} | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v4 | |
- name: Set up Java 21 | |
uses: actions/setup-java@v4 | |
with: | |
java-version: "21" | |
distribution: "microsoft" | |
- name: Grant execute permission for gradlew | |
run: chmod +x gradlew | |
- name: Setup Gradle | |
uses: gradle/actions/setup-gradle@v4 | |
with: | |
build-scan-publish: true | |
build-scan-terms-of-use-url: "https://gradle.com/help/legal-terms-of-use" | |
build-scan-terms-of-use-agree: "yes" | |
# Enable cache writing for NeoForge branches, since they don't benefit from the Fabric cache on master | |
cache-read-only: ${{ github.ref != 'refs/heads/master' && !contains(github.ref, 'neoforge') }} | |
- name: Compile Java code | |
run: ./gradlew remapJar --stacktrace --warning-mode=fail | |
- name: Validate JSON files | |
run: ./gradlew spotlessJsonCheck || (echo "::error::JSON validation failed! Run './gradlew spotlessApply' to fix style issues, or check the full error message for syntax errors." && exit 1) | |
- name: Validate Java code style | |
run: ./gradlew spotlessCheck || (echo "::error::Java code style validation failed! To fix, run 'Clean Up' and then 'Format' in Eclipse, or './gradlew spotlessApply' in the terminal." && exit 1) | |
- name: Run unit tests | |
run: ./gradlew test --stacktrace --warning-mode=fail | |
- name: Validate access widener | |
run: ./gradlew validateAccessWidener --stacktrace --warning-mode=fail | |
- name: Build | |
run: ./gradlew build --stacktrace --warning-mode=fail | |
- name: Upload to VirusTotal for analysis | |
id: virustotal | |
if: ${{ env.VIRUSTOTAL_API_KEY }} | |
uses: crazy-max/ghaction-virustotal@v4 | |
with: | |
vt_api_key: ${{ env.VIRUSTOTAL_API_KEY }} | |
files: | | |
./build/libs/*.jar | |
# An error in this step means that the upload failed, not that a false | |
# positive was detected. | |
continue-on-error: true | |
- name: Add VirusTotal links to build summary | |
if: ${{ env.VIRUSTOTAL_API_KEY && steps.virustotal.outputs.analysis }} | |
shell: bash | |
run: | | |
echo "<details open>" >> $GITHUB_STEP_SUMMARY | |
echo "<summary>🛡️ VirusTotal Scans</summary>" >> $GITHUB_STEP_SUMMARY | |
echo "" >> $GITHUB_STEP_SUMMARY | |
IFS=',' read -ra ANALYSIS <<< "${{ steps.virustotal.outputs.analysis }}" | |
for i in "${ANALYSIS[@]}"; do | |
filepath=${i%%=*} | |
url=${i#*=} | |
filename=$(basename "$filepath") | |
echo "- [$filename]($url)" >> $GITHUB_STEP_SUMMARY | |
done | |
echo "</details>" >> $GITHUB_STEP_SUMMARY |