Update 002_0008_avoid_read_write_default_access_rule.rego #54
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Continuous Integration | |
| on: | |
| push: | |
| branches: | |
| - "*" | |
| pull_request: | |
| branches: [ main ] | |
| jobs: | |
| Rules: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Run tests for rules | |
| run: ./scripts/run-policy-tests.sh | |
| - name: Download latest modelsource | |
| run: | | |
| LATEST_VERSION=$(curl -s https://api.github.com/repos/mxlint/mxlint-cli/releases/latest | grep "tag_name" | cut -d '"' -f 4) | |
| curl -L https://github.com/mxlint/mxlint-cli/archive/refs/tags/${LATEST_VERSION}.zip -o modelsource.zip | |
| unzip modelsource.zip | |
| mv mxlint-cli-*/resources/modelsource-v1 modelsource | |
| rm modelsource.zip | |
| rm -rf mxlint-cli-* | |
| - name: Lint XML output | |
| run: | | |
| ./bin/mxlint lint --xunit-report report.xml --rules ./rules --modelsource ./modelsource || true | |
| cat report.xml | |
| - name: Lint JSON output | |
| run: | | |
| ./bin/mxlint lint --json-file report.json --rules ./rules --modelsource ./modelsource || true | |
| cat report.json | |
| - name: Upload report | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: report | |
| path: report.* |