Limit folders to just CalmHub and Translators

jpgough-ms · Jan 2, 2025 · 189f240 · 189f240
1 parent f62f8cc
commit 189f240
Showing 1 changed file with 14 additions and 9 deletions.
diff --git a/.github/workflows/cve-scanning-maven.yml b/.github/workflows/cve-scanning-maven.yml
@@ -1,4 +1,4 @@
-name: CVE Scanning for Maven
+name: CVE Scanning for Maven Projects
 
 on:
   workflow_dispatch:
@@ -21,6 +21,10 @@ jobs:
     strategy:
       matrix:
         java-version: [ '21' ]
+        module-folder: [
+          'translator',
+          'calm-hub'
+        ]
     steps:
       - name: Checkout
         uses: actions/checkout@v4
@@ -34,25 +38,26 @@ jobs:
 
       - name: Build with Maven
         run: mvn verify
+        working-directory: ${{ matrix.module-folder }}
 
       - name: Depcheck
         uses: dependency-check/Dependency-Check_Action@main
         id: Depcheck
         env:
           JAVA_HOME: /opt/jdk
         with:
-          project: 'root'
-          path: '.'
+          project: '${{ matrix.module-folder }}'
+          path: '${{ matrix.module-folder }}'
           format: 'HTML'
-          out: 'dependency-reports' # this is the default, no need to specify unless you wish to override it
+          out: '${{ matrix.module-folder }}-reports' # this is the default, no need to specify unless you wish to override it
           args: >
-            --suppression .github/maven-cve-ignore-list.xml
-            --failOnCVSS 5
-            --enableRetired
+              --suppression .github/maven-cve-ignore-list.xml
+              --failOnCVSS 5
+              --enableRetired
 
       - name: Upload Test results
         if: ${{ always() }}
         uses: actions/upload-artifact@v4
         with:
-          name: Depcheck Report ${{ github.job }}
-          path: dependency-reports
+          name: Depcheck report ${{ github.job }} ${{ matrix.module-folder }}
+          path: ${{ github.workspace }}/${{ matrix.module-folder }}-reports