Merge pull request #5984 from XiShanYongYe-Chang/fix-verify-license-l… #5208
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: FOSSA | |
on: | |
push: | |
# Exclude branches created by Dependabot to avoid triggering current workflow | |
# for PRs initiated by Dependabot. | |
branches-ignore: | |
- 'dependabot/**' | |
permissions: | |
contents: read # Required by actions/checkout@v4 to fetch the repository contents. | |
jobs: | |
fossa: | |
name: FOSSA | |
# prevent job running from forked repository, otherwise | |
# 1. running on the forked repository would fail as missing necessary secret. | |
# 2. running on the forked repository would use unnecessary GitHub Action time. | |
if: ${{ github.repository == 'karmada-io/karmada' }} | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: checkout code | |
uses: actions/checkout@v4 | |
- name: Run FOSSA scan and upload build data | |
uses: fossas/fossa-action@v1 | |
with: | |
api-key: ${{secrets.FOSSA_API_KEY}} |