Skip to content

build(deps): bump actions/checkout from 4.2.0 to 4.2.2 #773

build(deps): bump actions/checkout from 4.2.0 to 4.2.2

build(deps): bump actions/checkout from 4.2.0 to 4.2.2 #773

Workflow file for this run

# Lints and checks for potential issues in the profiles.
name: Check-Profiles
on:
workflow_dispatch:
push:
branches-ignore:
- 'dependabot/**'
paths:
- 'ci/check/profiles/**'
- 'etc/**'
- .github/workflows/check-profiles.yml
- ci/printenv.sh
- contrib/sort.py
- src/firecfg/firecfg.config
pull_request:
paths:
- 'ci/check/profiles/**'
- 'etc/**'
- .github/workflows/check-profiles.yml
- ci/printenv.sh
- contrib/sort.py
- src/firecfg/firecfg.config
permissions: # added using https://github.com/step-security/secure-workflows
contents: read
jobs:
profile-checks:
runs-on: ubuntu-latest
timeout-minutes: 5
steps:
- name: Harden Runner
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7
with:
disable-sudo: true
egress-policy: block
allowed-endpoints: >
github.com:443
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
- name: print env
run: ./ci/printenv.sh
- run: python3 --version
- name: sort.py
run: >
./ci/check/profiles/sort.py
etc/inc/*.inc etc/{profile-a-l,profile-m-z}/*.profile
# Currently broken (see #5610)
# - name: private-etc-always-required.sh
# run: >
# ./ci/check/profiles/private-etc-always-required.sh
# etc/inc/*.inc etc/{profile-a-l,profile-m-z}/*.profile
- name: sort-disable-programs.sh
run: >
./ci/check/profiles/sort-disable-programs.sh
etc/inc/disable-programs.inc
- name: sort-firecfg.config.sh
run: >
./ci/check/profiles/sort-firecfg.config.sh
src/firecfg/firecfg.config