Skip to content

Enable trivy scan in CI #1343

Enable trivy scan in CI

Enable trivy scan in CI #1343

Workflow file for this run

on:
push:
paths-ignore:
- "**.md"
pull_request:
paths-ignore:
- "**.md"
workflow_dispatch:
name: Library Crates
env:
AS: nasm
STABLE_RUST_TOOLCHAIN: 1.75.0
NIGHTLY_RUST_TOOLCHAIN: nightly-2023-12-31
TOOLCHAIN_PROFILE: minimal
jobs:
compile:
name: Build Library Crates
runs-on: ${{ matrix.host_os }}
timeout-minutes: 30
strategy:
matrix:
host_os:
- ubuntu-20.04
- windows-2019
steps:
# Install first since it's needed to build NASM
- name: Install LLVM and Clang
uses: KyleMayes/install-llvm-action@v2
with:
version: "10.0"
directory: ${{ runner.temp }}/llvm
- name: install NASM
uses: ilammy/setup-nasm@v1
- name: Install stable toolchain
uses: dtolnay/rust-toolchain@master
with:
toolchain: ${{ env.STABLE_RUST_TOOLCHAIN }}
- name: Install nightly toolchain
uses: dtolnay/rust-toolchain@master
with:
toolchain: ${{ env.NIGHTLY_RUST_TOOLCHAIN }}
- name: Checkout sources
uses: actions/checkout@v4
with:
submodules: recursive
- name: Cache
uses: Swatinem/rust-cache@v2
- name: Preparation work
run: bash sh_script/preparation.sh
- name: Build library crates
run: make lib-build
test:
name: Test Library Crates
strategy:
fail-fast: false
matrix:
os: [ubuntu-20.04, windows-2019]
runs-on: ${{ matrix.os }}
timeout-minutes: 30
steps:
# Install first since it's needed to build NASM
- name: Install LLVM and Clang
uses: KyleMayes/install-llvm-action@v2
with:
version: "10.0"
directory: ${{ runner.temp }}/llvm
- name: install NASM
uses: ilammy/setup-nasm@v1
- name: Install stable toolchain
uses: dtolnay/rust-toolchain@master
with:
toolchain: ${{ env.STABLE_RUST_TOOLCHAIN }}
- name: Install nightly toolchain
uses: dtolnay/rust-toolchain@master
with:
toolchain: ${{ env.NIGHTLY_RUST_TOOLCHAIN }}
- name: Checkout sources
uses: actions/checkout@v4
with:
submodules: recursive
- name: Preparation Work
run: make preparation
- name: Test library crates
run: make lib-test