search

trailofbits / differ

Detecting Inconsistencies in Feature or Function Evaluations of Requirements
GNU Affero General Public License v3.0
67 stars 4 forks source link

Add Production CI Checks #23

Open ameily opened 1 year ago

ameily commented 1 year ago

When we are ready to open source and release DIFFER, we'll want to add several CI checks for production code, including:

pip-audit

# update .github/workflows/ci.yml
pip-audit:
  runs-on: ubuntu-22.04
  steps:
    - uses: actions/checkout@v2
      with:
        fetch-depth: 1

    - uses: actions/setup-python@v2
      with:
        python-version: '3.9'

    - name: 'Generate requirements.txt'
      run: |
        pipx run pipfile-requirements Pipfile.lock > requirements.txt

    - uses: pypa/gh-action-pip-audit@v1.0.0
      with:
        inputs: requirements.txt

dependabot

version: 2
updates:
  - package-ecosystem: "pip" # See documentation for possible values
    directory: "/" # Location of package manifests
    schedule:
      interval: "weekly"
ameily commented 1 year ago

I've added dependabot.