fix: Gemfile to reduce vulnerabilities #38
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: "Rubocop" | |
on: push | |
jobs: | |
rubocop: | |
runs-on: ubuntu-latest | |
strategy: | |
fail-fast: false | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v2 | |
# If running on a self-hosted runner, check it meets the requirements | |
# listed at https://github.com/ruby/setup-ruby#using-self-hosted-runners | |
- name: Set up Ruby | |
uses: ruby/setup-ruby@v1 | |
with: | |
ruby-version: 2.7 | |
# This step is not necessary if you add the gem to your Gemfile | |
- name: Install Code Scanning integration | |
run: bundle add code-scanning-rubocop --version 0.3.0 --skip-install | |
- name: Install dependencies | |
run: bundle install | |
- name: Rubocop run | |
run: | | |
bash -c " | |
bundle exec rubocop --require code_scanning --format CodeScanning::SarifFormatter -o rubocop.sarif | |
[[ $? -ne 2 ]] | |
" | |
- name: Upload Sarif output | |
uses: github/codeql-action/upload-sarif@v1 | |
with: | |
sarif_file: rubocop.sarif |