Skip to content

UID2-7011: add zizmor workflow-security scan (report-only) #62

UID2-7011: add zizmor workflow-security scan (report-only)

UID2-7011: add zizmor workflow-security scan (report-only) #62

name: Test Pull Requests
on:
pull_request:
branches: [ main ]
# this allows us to manually run this job
workflow_dispatch:
jobs:
swift-code-checks:
name: Code Tests
runs-on: macos-14
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
- name: Install dependencies
run: brew install swiftlint
- name: Lint code
run: swiftlint lint --config .swiftlint.yml --reporter github-actions-logging
- name: Select Xcode 16.2
run: sudo xcode-select -s /Applications/Xcode_16.2.app
- name: Build
run: xcodebuild -scheme UID2IMAPlugin -destination "generic/platform=iOS"
- name: Run unit tests
run: xcodebuild test -scheme UID2IMAPluginTests -destination "OS=18.2,name=iPhone 16"
- name: Lint pod spec
run: pod lib lint --verbose
vulnerability-scan:
name: Vulnerability Scan
runs-on: ubuntu-latest
needs: [swift-code-checks]
steps:
- name: Vulnerability Scan
uses: IABTechLab/uid2-shared-actions/actions/vulnerability_scan@v3
with:
scan_type: 'fs'