Skip to content

Commit 23480f7

Browse files
authored
github build actions update
2 parents b231c34 + 2d89ecb commit 23480f7

1 file changed

Lines changed: 20 additions & 3 deletions

File tree

.github/workflows/java.yaml

Lines changed: 20 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -20,6 +20,9 @@ jobs:
2020
matrix:
2121
jdk: [17, 21]
2222
steps:
23+
# Using version tag for GitHub official actions (trusted) for easier maintenance.
24+
# For production code, consider pinning to commit SHA for enhanced security.
25+
# See: https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions
2326
- uses: actions/checkout@v4
2427
- name: Set up JDK ${{ matrix.jdk }}
2528
uses: actions/setup-java@v4
@@ -43,6 +46,9 @@ jobs:
4346
matrix:
4447
jdk: [17, 21]
4548
steps:
49+
# Using version tag for GitHub official actions (trusted) for easier maintenance.
50+
# For production code, consider pinning to commit SHA for enhanced security.
51+
# See: https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions
4652
- uses: actions/checkout@v4
4753
- name: Set up JDK ${{ matrix.jdk }}
4854
uses: actions/setup-java@v4
@@ -61,16 +67,22 @@ jobs:
6167
matrix:
6268
jdk: [17, 21]
6369
steps:
70+
# Using version tag for GitHub official actions (trusted) for easier maintenance.
71+
# For production code, consider pinning to commit SHA for enhanced security.
72+
# See: https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions
6473
- uses: actions/checkout@v4
6574
- name: Set up JDK ${{ matrix.jdk }}
6675
uses: actions/setup-java@v4
6776
with:
6877
java-version: ${{ matrix.jdk }}
6978
distribution: 'semeru'
79+
# Using version tag for Gradle (trusted action) for easier maintenance.
80+
# For production code, consider pinning to commit SHA for enhanced security.
81+
# See: https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions
82+
- name: Setup Gradle
83+
uses: gradle/actions/setup-gradle@v4
7084
- name: Build with Gradle
71-
uses: gradle/gradle-build-action@bd5760595778326ba7f1441bcf7e88b49de61a25
72-
with:
73-
arguments: build -Pjava_version=${{ matrix.jdk }}
85+
run: ./gradlew build -Pjava_version=${{ matrix.jdk }}
7486

7587
build-gradlew:
7688
name: Build Gradle wrapper
@@ -80,12 +92,17 @@ jobs:
8092
matrix:
8193
jdk: [17, 21]
8294
steps:
95+
# Using version tag for GitHub official actions (trusted) for easier maintenance.
96+
# For production code, consider pinning to commit SHA for enhanced security.
97+
# See: https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions
8398
- uses: actions/checkout@v4
8499
- name: Set up JDK ${{ matrix.jdk }}
85100
uses: actions/setup-java@v4
86101
with:
87102
java-version: ${{ matrix.jdk }}
88103
distribution: 'semeru'
104+
# Using version tag for Gradle official action (trusted) for easier maintenance.
105+
# This demonstrates the recommended approach for CICS sample repositories.
89106
- name: Setup Gradle
90107
uses: gradle/actions/setup-gradle@v4
91108
- name: Build with Gradle

0 commit comments

Comments
 (0)