Merge branch 'main' into feature/OP-2105/dependabot

RiskIdent · Nov 6, 2023 · 7f72fa6 · 7f72fa6
2 parents 3060431 + 4cc4984
commit 7f72fa6
Show file tree

Hide file tree

Showing 31 changed files with 2,160 additions and 3 deletions.
diff --git a/.dockerignore b/.dockerignore
@@ -1,3 +1,7 @@
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
+
 .git
 node_modules
 package.json

diff --git a/.editorconfig b/.editorconfig
@@ -1,3 +1,7 @@
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
+
 root = true
 
 [*]

diff --git a/.github/.markdownlint.yaml b/.github/.markdownlint.yaml
@@ -1,3 +1,6 @@
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
 
 extends: ../.markdownlint.yaml
 

diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
@@ -1 +1,5 @@
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
+
 *   @RiskIdent/platform
diff --git a/.github/workflows/eclint.yml b/.github/workflows/eclint.yml
@@ -1,3 +1,7 @@
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
+
 name: eclint
 
 on:

diff --git a/.github/workflows/govulncheck.yml b/.github/workflows/govulncheck.yml
@@ -0,0 +1,63 @@
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
+
+name: govulncheck
+
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+  schedule:
+    - cron: 0 8 * * 1  # 08:00 on mondays
+
+jobs:
+  govulncheck:
+    runs-on: ubuntu-latest
+    name: Run govulncheck
+    steps:
+      - uses: actions/checkout@v3
+
+      - id: govulncheck
+        uses: golang/govulncheck-action@v1
+        with:
+           go-version-file: go.mod
+           go-package: ./...
+
+      - name: Send Slack message
+        uses: slackapi/[email protected]
+        if: ${{ failure() && steps.govulncheck.conclusion == 'failure' && github.ref == 'refs/heads/main' }}
+        with:
+          payload: |
+            {
+              "blocks": [
+                {
+                  "type": "header",
+                  "text": {
+                    "type": "plain_text",
+                    "text": "govulncheck",
+                    "emoji": true
+                  }
+                },
+                {
+                  "type": "section",
+                  "text": {
+                    "type": "mrkdwn",
+                    "text": "Vulnerabilities in <${{ github.server_url }}/${{ github.repository }}|${{ github.repository }}> was found by govulncheck on ${{ github.ref_type }} <${{ github.event.pull_request.html_url || github.event.head_commit.url }}|${{ github.head_ref || github.ref_name }}>"
+                  }
+                },
+                {
+                  "type": "context",
+                  "elements": [
+                    {
+                      "type": "mrkdwn",
+                      "text": "<${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}|${{ github.workflow_ref }}>"
+                    }
+                  ]
+                }
+              ]
+            }
+        env:
+          SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_URL }}
+          SLACK_WEBHOOK_TYPE: INCOMING_WEBHOOK
diff --git a/.github/workflows/markdownlint.yml b/.github/workflows/markdownlint.yml
@@ -1,3 +1,7 @@
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
+
 name: markdownlint
 
 on:

diff --git a/.github/workflows/reuse.yml b/.github/workflows/reuse.yml
@@ -0,0 +1,19 @@
+# SPDX-FileCopyrightText: 2022 Free Software Foundation Europe e.V. <https://fsfe.org>
+#
+# SPDX-License-Identifier: CC0-1.0
+
+name: REUSE Compliance Check
+
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v3
+    - name: REUSE Compliance Check
+      uses: fsfe/reuse-action@v1
diff --git a/.github/workflows/yamllint.yml b/.github/workflows/yamllint.yml
@@ -1,3 +1,7 @@
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
+
 name: yamllint
 
 on:

diff --git a/.gitignore b/.gitignore
@@ -1,3 +1,7 @@
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
+
 ri-forward-webhook
 *.exe
 

diff --git a/.markdownlint-cli2.yaml b/.markdownlint-cli2.yaml
@@ -1,3 +1,7 @@
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
+
 # yaml-language-server: $schema=https://github.com/DavidAnson/vscode-markdownlint/raw/main/markdownlint-cli2-config-schema.json
 
 outputFormatters:

diff --git a/.markdownlint.yaml b/.markdownlint.yaml
@@ -1,3 +1,7 @@
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
+
 # Good reference: https://github.com/DavidAnson/markdownlint/blob/main/schema/.markdownlint.yaml
 # Docs per rule: https://github.com/DavidAnson/markdownlint/blob/main/doc/Rules.md
 

diff --git a/.yamllint b/.yamllint
@@ -1,4 +1,7 @@
----
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
+
 extends: default
 yaml-files:
   - "*.yaml"

diff --git a/Dockerfile b/Dockerfile
@@ -1,3 +1,7 @@
+# SPDX-FileCopyrightText: 2023 Risk.Ident GmbH <[email protected]>
+#
+# SPDX-License-Identifier: CC0-1.0
+
 FROM docker.io/library/golang:1.21-alpine AS build
 
 WORKDIR /opt/ri-forward-webhook
@@ -13,3 +17,8 @@ COPY --from=build /go/bin/ri-forward-webhook /usr/bin/
 COPY --from=build /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/ca-certificates.crt
 ENTRYPOINT ["ri-forward-webhook"]
 USER 10000
+
+LABEL \
+	org.opencontainers.image.source=https://github.com/RiskIdent/ri-forward-webhook \
+	org.opencontainers.image.description="Forwards and validates webhooks" \
+	org.opencontainers.image.licenses=GPL-3.0-or-later