Skip to content

Commit 4365abf

Browse files
authored
build: add detect-secrets stage to build (#224)
Signed-off-by: Phil Adams <[email protected]>
1 parent e9b0da6 commit 4365abf

File tree

1 file changed

+13
-13
lines changed

1 file changed

+13
-13
lines changed

.travis.yml

Lines changed: 13 additions & 13 deletions
Original file line numberDiff line numberDiff line change
@@ -27,37 +27,37 @@ stages:
2727
- name: Publish-Release
2828
if: (tag IS present) AND (fork = false)
2929

30-
before_install:
31-
- sudo apt-get update
32-
- env | grep TRAVIS
33-
- python -V
34-
3530
jobs:
3631
include:
3732
- stage: Build-Test
3833
jdk: openjdk11
39-
install: skip
34+
install: true
4035
script:
4136
- build/setMavenVersion.sh
4237
- mvn clean package $MVN_ARGS
4338

4439
- jdk: openjdk17
45-
install: skip
40+
install: true
4641
script:
4742
- mvn clean package $MVN_ARGS
4843

44+
- name: Detect-Secrets
45+
language: python
46+
python: 3.12
47+
install:
48+
- pip install --upgrade "git+https://github.com/ibm/detect-secrets.git@master#egg=detect-secrets"
49+
script:
50+
- detect-secrets scan --update .secrets.baseline
51+
- detect-secrets -v audit --report --fail-on-unaudited --fail-on-live --fail-on-audited-real .secrets.baseline
52+
4953
- stage: Semantic-Release
50-
jdk: openjdk11
54+
language: node_js
55+
node_js: 22
5156
install:
52-
- nvm install 18
53-
- node --version
54-
- npm --version
5557
- npm install
5658
- pip install --user bump-my-version
5759
script:
5860
- npm run semantic-release
59-
after_success:
60-
- echo "Semantic release has successfully created a new tagged-release"
6161

6262
- stage: Publish-Release
6363
jdk: openjdk11

0 commit comments

Comments
 (0)