codacy-cli-v2/.github/workflows/trivy-plugin-test.yml at c342b5d4c04b0e78ea4b87302e178d8b93dd3bbd · codacy/codacy-cli-v2 · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
name: Trivy Plugin Test

permissions:
  contents: write

on:
  push:
    paths:
      - 'plugins/tools/trivy/**'


jobs:
  test:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout code
        uses: actions/checkout@v4

      - name: Set up Go
        uses: actions/setup-go@v5
        with:
          go-version: '1.21'
          cache: true

      - name: Build CLI
        run: |
          go build -o cli-v2 ./cli-v2.go
          chmod +x cli-v2

      - name: Run Trivy plugin tests
        run: |
          # Store the path to the CLI
          CLI_PATH="$(pwd)/cli-v2"
          # Change to test directory
          cd plugins/tools/trivy/test
          # Install the plugin
          "$CLI_PATH" install
          # Run analysis
          "$CLI_PATH" analyze --tool trivy --format sarif --output actual.sarif
          # Convert absolute paths to relative paths in the output
          sed -i 's|file:///home/runner/work/codacy-cli-v2/codacy-cli-v2/|file:///|g' actual.sarif
          # Compare with expected output
          diff expected.sarif actual.sarif
          # Clean up
          rm actual.sarif