diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index 0fdd9104b..cd35f198b 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -32,3 +32,5 @@ jobs: with: file: './Dockerfile' push: ${{ github.event_name == 'push' || github.event_name == 'release' }} + build-args: | + "PROJECT_VERSION=${{ github.ref_name }}" diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml index b886bb077..f76bed9af 100644 --- a/.github/workflows/security.yml +++ b/.github/workflows/security.yml @@ -92,7 +92,7 @@ jobs: - name: Docker build run: | docker pull $PUBLIC_IMAGE:$IMAGE_TAG - docker build --cache-from $PUBLIC_IMAGE:$IMAGE_TAG -t fdp:snyk-test -f Dockerfile . + docker build --build-arg PROJECT_VERSION=x.y.z --cache-from $PUBLIC_IMAGE:$IMAGE_TAG -t fdp:snyk-test -f Dockerfile . - name: Perform Snyk Check (Docker) uses: snyk/actions/docker@master diff --git a/Dockerfile b/Dockerfile index ec1a9fb2d..531b9a7f2 100644 --- a/Dockerfile +++ b/Dockerfile @@ -11,7 +11,8 @@ WORKDIR /builder ADD . /builder # https://maven.apache.org/ref/current/maven-embedder/cli.html -RUN mvn --quiet --batch-mode --update-snapshots --fail-fast -DskipTests package +ARG PROJECT_VERSION +RUN mvn --quiet --batch-mode --update-snapshots --fail-fast -DskipTests -Drevision=${PROJECT_VERSION} package ################################################################################ # BUILD IMAGE diff --git a/SECURITY.md b/SECURITY.md index 2c2b9d08e..c890a2b59 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -3,20 +3,20 @@ ## Supported Versions We support the latest *major* and *minor* version with *patch* versions that fix vulnerabilities and critical bugs. -For older versions, we highly recommend upgrading to the latest version. +For older versions, we highly recommend upgrading to the [latest] version. -| Version | Supported | -|---------| ------------------ | -| 1.20.x | :white_check_mark: | -| < 1.20 | :x: | +| Version | Supported | +|------------| ------------------ | +| [latest] | :white_check_mark: | +| < [latest] | :x: | ## Current Recommendations -* Always use the [latest release]. +* Always use the [latest] release. ## Reporting a Vulnerability If you encounter a vulnerability, please create a [private security advisory] using the "Report a vulnerability" button at the top of this page. [private security advisory]: https://docs.github.com/en/code-security/how-tos/report-and-fix-vulnerabilities/privately-reporting-a-security-vulnerability -[latest release]: https://github.com/FAIRDataTeam/FAIRDataPoint/releases/latest +[latest]: https://github.com/FAIRDataTeam/FAIRDataPoint/releases/latest diff --git a/pom.xml b/pom.xml index cf264584e..42445596f 100644 --- a/pom.xml +++ b/pom.xml @@ -10,7 +10,7 @@ org.fairdatateam fairdatapoint - 1.20.0 + ${revision} jar FairDataPoint @@ -45,6 +45,9 @@ UTF-8 + + + dev 21 @@ -384,6 +387,10 @@ true ${project.build.outputDirectory}/META-INF/git.properties full + + + true + diff --git a/src/main/resources/application.yml b/src/main/resources/application.yml index 57b5615a5..cf6820ad3 100644 --- a/src/main/resources/application.yml +++ b/src/main/resources/application.yml @@ -67,7 +67,7 @@ metadataProperties: openapi: title: FAIR Data Point API - version: 1.20.0 + version: "@project.version@" description: "The reference implementation of the metadata registration service: A service implementing the API specification. It contains an authentication system to allow maintainers to define and update metadata. Read-only access to the data is public." contact: name: Luiz Bonino