diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml
index 0fdd9104b..cd35f198b 100644
--- a/.github/workflows/docker-publish.yml
+++ b/.github/workflows/docker-publish.yml
@@ -32,3 +32,5 @@ jobs:
with:
file: './Dockerfile'
push: ${{ github.event_name == 'push' || github.event_name == 'release' }}
+ build-args: |
+ "PROJECT_VERSION=${{ github.ref_name }}"
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index b886bb077..f76bed9af 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -92,7 +92,7 @@ jobs:
- name: Docker build
run: |
docker pull $PUBLIC_IMAGE:$IMAGE_TAG
- docker build --cache-from $PUBLIC_IMAGE:$IMAGE_TAG -t fdp:snyk-test -f Dockerfile .
+ docker build --build-arg PROJECT_VERSION=x.y.z --cache-from $PUBLIC_IMAGE:$IMAGE_TAG -t fdp:snyk-test -f Dockerfile .
- name: Perform Snyk Check (Docker)
uses: snyk/actions/docker@master
diff --git a/Dockerfile b/Dockerfile
index ec1a9fb2d..531b9a7f2 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -11,7 +11,8 @@ WORKDIR /builder
ADD . /builder
# https://maven.apache.org/ref/current/maven-embedder/cli.html
-RUN mvn --quiet --batch-mode --update-snapshots --fail-fast -DskipTests package
+ARG PROJECT_VERSION
+RUN mvn --quiet --batch-mode --update-snapshots --fail-fast -DskipTests -Drevision=${PROJECT_VERSION} package
################################################################################
# BUILD IMAGE
diff --git a/SECURITY.md b/SECURITY.md
index 2c2b9d08e..c890a2b59 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -3,20 +3,20 @@
## Supported Versions
We support the latest *major* and *minor* version with *patch* versions that fix vulnerabilities and critical bugs.
-For older versions, we highly recommend upgrading to the latest version.
+For older versions, we highly recommend upgrading to the [latest] version.
-| Version | Supported |
-|---------| ------------------ |
-| 1.20.x | :white_check_mark: |
-| < 1.20 | :x: |
+| Version | Supported |
+|------------| ------------------ |
+| [latest] | :white_check_mark: |
+| < [latest] | :x: |
## Current Recommendations
-* Always use the [latest release].
+* Always use the [latest] release.
## Reporting a Vulnerability
If you encounter a vulnerability, please create a [private security advisory] using the "Report a vulnerability" button at the top of this page.
[private security advisory]: https://docs.github.com/en/code-security/how-tos/report-and-fix-vulnerabilities/privately-reporting-a-security-vulnerability
-[latest release]: https://github.com/FAIRDataTeam/FAIRDataPoint/releases/latest
+[latest]: https://github.com/FAIRDataTeam/FAIRDataPoint/releases/latest
diff --git a/pom.xml b/pom.xml
index cf264584e..42445596f 100644
--- a/pom.xml
+++ b/pom.xml
@@ -10,7 +10,7 @@
org.fairdatateam
fairdatapoint
- 1.20.0
+ ${revision}
jar
FairDataPoint
@@ -45,6 +45,9 @@
UTF-8
+
+
+ dev
21
@@ -384,6 +387,10 @@
true
${project.build.outputDirectory}/META-INF/git.properties
full
+
+
+ true
+
diff --git a/src/main/resources/application.yml b/src/main/resources/application.yml
index 57b5615a5..cf6820ad3 100644
--- a/src/main/resources/application.yml
+++ b/src/main/resources/application.yml
@@ -67,7 +67,7 @@ metadataProperties:
openapi:
title: FAIR Data Point API
- version: 1.20.0
+ version: "@project.version@"
description: "The reference implementation of the metadata registration service: A service implementing the API specification. It contains an authentication system to allow maintainers to define and update metadata. Read-only access to the data is public."
contact:
name: Luiz Bonino