Skip to content

build(deps): bump step-security/harden-runner from 2.10.1 to 2.10.2 #135

build(deps): bump step-security/harden-runner from 2.10.1 to 2.10.2

build(deps): bump step-security/harden-runner from 2.10.1 to 2.10.2 #135

Workflow file for this run

# SPDX-License-Identifier: Apache-2.0
name: Lint
on:
push:
branches:
- "main"
paths:
- '**.py'
- 'src/instructlab/schema/v*/**/*.json'
- 'pyproject.toml'
- 'tox.ini'
- 'scripts/**'
- '.github/workflows/lint.yml' # This workflow
pull_request:
branches:
- "main"
paths:
- '**.py'
- 'src/instructlab/schema/v*/**/*.json'
- 'pyproject.toml'
- 'tox.ini'
- 'scripts/**'
- '.github/workflows/lint.yml' # This workflow
env:
LC_ALL: en_US.UTF-8
defaults:
run:
shell: bash
permissions:
contents: read
jobs:
lint:
runs-on: ubuntu-latest
name: "${{ matrix.lint.name }}"
strategy:
fail-fast: false
matrix:
lint:
- name: "jsonschema"
commands: |
tox -e jsonschema
- name: "ruff"
commands: |
tox -e ruffcheck
- name: "pylint"
commands: |
echo "::add-matcher::.github/workflows/matchers/pylint.json"
tox -e pylint
- name: "mypy"
commands: |
echo "::add-matcher::.github/workflows/matchers/mypy.json"
tox -e mypy
steps:
- name: "Harden Runner"
uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
- name: "Checkout"
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with:
fetch-depth: 0
- name: "Setup Python"
uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b # v5.3.0
with:
python-version: "3.11"
- name: "Install tox"
run: |
python -m pip install --upgrade pip
python -m pip install tox tox-gh
- name: "${{ matrix.lint.name }}"
run: |
${{ matrix.lint.commands }}
env:
RUFF_OUTPUT_FORMAT: github