Update main.yml

This commit is contained in:
Noxcis 2024-08-24 02:38:10 -05:00 committed by GitHub
parent 8020714e07
commit 27ff4e63b6
No known key found for this signature in database
GPG key ID: B5690EEEBB952194

View file

@ -63,3 +63,43 @@ jobs:
command: cves
image: ${{ steps.meta.outputs.tags }}
exit-code: true
- name: Create build summary
if: ${{ always() }}
uses: actions/github-script@v6
with:
script: |
const summary = `
### Docker Image Build and Analysis Summary
- **Image Name:** ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
- **Commit SHA:** ${{ env.SHA }}
- **Build Status:** ${{ job.status }}
- **Docker Scout Results:**
- **CVE Analysis:** ${{ steps.docker-scout.outputs.result || 'No results' }}
`;
const comment = {
body: summary
};
if (process.env.GITHUB_EVENT_NAME === 'pull_request') {
const prNumber = process.env.GITHUB_REF.split('/')[2];
await github.rest.issues.createComment({
issue_number: prNumber,
owner: context.repo.owner,
repo: context.repo.repo,
...comment
});
} else {
await github.rest.repos.createCommitStatus({
owner: context.repo.owner,
repo: context.repo.repo,
sha: process.env.GITHUB_SHA,
state: job.status === 'success' ? 'success' : 'failure',
description: 'Docker image build and analysis complete',
context: 'docker-build'
});
}
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}