forked from hackforla/website
-
Notifications
You must be signed in to change notification settings - Fork 1
51 lines (45 loc) · 1.79 KB
/
codeql-create-issues.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
# This workflow generates new issues for CodeQL alerts if they do not exist
# It must be manually triggered
name: "CodeQL Create Issues"
on:
workflow_dispatch:
jobs:
codql-scan-job:
uses: ./.github/workflows/codeql-scan-job.yml
codeql-create-issues-job:
needs: codql-scan-job
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/checkout@v4
# Fetch Alerts
- name: Fetch Alerts
id: fetch-alerts
uses: actions/github-script@v7
with:
github-token: ${{ secrets.GITHUB_TOKEN }}
script: |
const script = require('./github-actions/trigger-issue/create-codeql-issues/fetch-alerts.js');
const fetchAlerts = script({ g: github, c: context });
return fetchAlerts
# Check Existing Issues
- name: Check Existing Issues
id: check-existing-issues
uses: actions/github-script@v7
with:
github-token: ${{ secrets.GITHUB_TOKEN }}
script: |
const script = require('./github-actions/trigger-issue/create-codeql-issues/check-existing-issues.js');
const alerts = ${{ steps.fetch-alerts.outputs.result }};
const checkExistingIssues = script({ g: github, c: context, alerts});
return checkExistingIssues
# Create New Issues
- name: Create New Issues
id: create-new-issues
uses: actions/github-script@v7
with:
github-token: ${{ secrets.HACKFORLA_ADMIN_TOKEN }}
script: |
const script = require('./github-actions/trigger-issue/create-codeql-issues/create-new-issues.js');
const alertIds = ${{ steps.check-existing-issues.outputs.result }};
const newIssues = script({ g: github, c: context, alertIds});