Update content to use OSCAL v1.1.1 models #427
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| on: | |
| push: | |
| branches: | |
| - main | |
| - develop | |
| paths: | |
| - 'src/**' | |
| - 'oscal' | |
| pull_request: | |
| types: [opened, synchronize, reopened] | |
| workflow_dispatch: | |
| name: Process Content Artifacts | |
| env: | |
| HOME_REPO: aj-stein-nist/OSCAL | |
| # With the default GEN_CONTENT_DIR, the resulting catalogs, profiles, and | |
| # other example content will end up in the build/generated directory. For | |
| # checking in finalized content, it go into build/.., the top-level directory | |
| # of this project. | |
| GEN_CONTENT_DIR: .. | |
| jobs: | |
| validate-and-publish-content: | |
| name: Check, Convert and Validate Content | |
| runs-on: ubuntu-20.04 | |
| steps: | |
| - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 | |
| if: github.repository == env.HOME_REPO && github.ref == 'refs/heads/main' | |
| with: | |
| submodules: recursive | |
| token: ${{ secrets.COMMIT_TOKEN }} | |
| - name: Cache generated content for OSCAL build artifacts | |
| uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 | |
| with: | |
| path: | | |
| build/oscal/build/node_modules | |
| build/oscal/build/generated | |
| # See https://github.com/actions/cache/blob/main/tips-and-workarounds.md#update-a-cache | |
| key: | | |
| ${{ hashFiles('build/oscal/build/**') }} | |
| - uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 | |
| if: github.repository != env.HOME_REPO || github.ref != 'refs/heads/main' | |
| with: | |
| submodules: recursive | |
| - name: Copy and convert content | |
| run: | | |
| make -C build all GEN_CONTENT_DIR=${{env.GEN_CONTENT_DIR}} | |
| id: copy-convert | |
| - name: Zip Artifacts for Upload | |
| if: always() | |
| run: | | |
| zip ${{ runner.temp }}/generated-content.zip -r examples/ nist.gov/ | |
| working-directory: ${{ github.workspace }} | |
| - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 | |
| if: always() | |
| with: | |
| name: generated-content | |
| path: | | |
| ${{ runner.temp }}/generated-content.zip | |
| retention-days: 5 | |
| - name: Publish Artifacts | |
| # Only do this on main | |
| if: github.repository == env.HOME_REPO && github.ref == 'refs/heads/main' | |
| uses: stefanzweifel/git-auto-commit-action@8756aa072ef5b4a080af5dc8fef36c5d586e521d | |
| with: | |
| push_options: --force | |
| commit_message: Publishing auto-converted artifacts [skip ci] | |
| commit_user_name: OSCAL GitHub Actions Bot | |
| commit_user_email: [email protected] | |
| commit_author: OSCAL GitHub Actions Bot <[email protected]> |