Merge pull request #369 from Kuadrant/fossa-scan

gh action: license scan by fossa
Kuadrant · Aug 22, 2024 · 05a8ae9 · 05a8ae9
2 parents 76d6aae + 426bb8f
commit 05a8ae9
Showing 1 changed file with 29 additions and 0 deletions.
diff --git a/.github/workflows/license-scan.yaml b/.github/workflows/license-scan.yaml
@@ -0,0 +1,29 @@
+---
+name: License Scan
+
+on:
+  push:
+    branches:
+      - 'main'
+  pull_request:
+    branches:
+      - '*'
+
+jobs:
+  fossa-scan:
+    name: Find license compliance and security issues
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: fossas/fossa-action@v1.4.0
+        name: License Scan
+        with:
+          api-key: ${{secrets.FOSSA_API_TOKEN}}
+          branch: ${{ github.head_ref || github.ref_name }}
+          project: git+github.com/Kuadrant/limitador
+      - uses: fossas/fossa-action@v1.4.0
+        name: License test for issues
+        with:
+          api-key: ${{secrets.FOSSA_API_TOKEN}}
+          run-tests: true
+          project: git+github.com/Kuadrant/limitador