From f33e7def06537995f3a68cab528b5c65a4c0d011 Mon Sep 17 00:00:00 2001 From: Jan Macku Date: Mon, 12 Sep 2022 10:15:43 +0200 Subject: [PATCH] ci(lint): add shell linter - Differential ShellCheck It performs differential ShellCheck scans and report results directly in pull request. documentation: https://github.com/redhat-plumbers-in-action/differential-shellcheck Signed-off-by: Jan Macku --- .github/workflows/static-code-analysis.yml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) diff --git a/.github/workflows/static-code-analysis.yml b/.github/workflows/static-code-analysis.yml index 64dbe388..1c3a65b5 100644 --- a/.github/workflows/static-code-analysis.yml +++ b/.github/workflows/static-code-analysis.yml @@ -36,3 +36,25 @@ jobs: - name: Perform CodeQL Analysis uses: github/codeql-action/analyze@v2 + + differential-shellcheck: + if: github.event_name == 'pull_request' + runs-on: ubuntu-latest + + permissions: + contents: read + security-events: write + pull-requests: write + + steps: + - name: Checkout repository + uses: actions/checkout@v3 + with: + fetch-depth: 0 + + # Doc: https://github.com/redhat-plumbers-in-action/differential-shellcheck#usage + - name: Differential ShellCheck + uses: redhat-plumbers-in-action/differential-shellcheck@v3 + with: + severity: warning + token: ${{ secrets.GITHUB_TOKEN }}