File tree Expand file tree Collapse file tree
Expand file tree Collapse file tree Original file line number Diff line number Diff line change 8181 badger/badger-linux-amd64.tar.gz
8282 dgraph/dgraph-checksum-linux-amd64.sha256
8383 dgraph/dgraph-linux-amd64.tar.gz
84- - name : Move Badger Binary into Linux Directory
85- run : |
86- tar -xzf badger/badger-linux-amd64.tar.gz --directory badger
87- [ -d "linux" ] || mkdir linux
88- # linux directory will be added to docker image in build step
89- cp badger/badger-linux-amd64 linux/badger
9084 - name : Make Dgraph Docker Image
9185 run : |
9286 set -e
@@ -181,12 +175,6 @@ jobs:
181175 badger/badger-linux-arm64.tar.gz
182176 dgraph/dgraph-checksum-linux-arm64.sha256
183177 dgraph/dgraph-linux-arm64.tar.gz
184- - name : Move Badger Binary into Linux Directory
185- run : |
186- tar -xzf badger/badger-linux-arm64.tar.gz --directory badger
187- [ -d "linux" ] || mkdir linux
188- # linux directory will be added to docker image in build step
189- cp badger/badger-linux-arm64 linux/badger
190178 - name : Make Dgraph Docker Image
191179 run : |
192180 set -e
Original file line number Diff line number Diff line change 1+ name : ci-dgraph-nightly-cves
2+
3+ on :
4+ schedule :
5+ - cron : 0 0 * * * # Run daily at midnight UTC
6+ workflow_dispatch : # Allow manual trigger
7+
8+ permissions :
9+ contents : read
10+
11+ jobs :
12+ cve-scan :
13+ runs-on : blacksmith-4vcpu-ubuntu-2404
14+ timeout-minutes : 30
15+ steps :
16+ - name : Checkout main branch
17+ uses : actions/checkout@v5
18+ with :
19+ ref : main
20+
21+ - name : Set up Go
22+ uses : actions/setup-go@v6
23+ with :
24+ go-version-file : go.mod
25+
26+ - name : Build Dgraph
27+ run : make dgraph
28+
29+ - name : Build Docker image
30+ run : |
31+ mkdir -p linux
32+ cp ./dgraph/dgraph ./linux/dgraph
33+ docker build -f contrib/Dockerfile -t dgraph/dgraph:nightly-scan .
34+
35+ - name : Run Trivy vulnerability scanner
36+ uses : aquasecurity/trivy-action@master
37+ with :
38+ image-ref : dgraph/dgraph:nightly-scan
39+ format : table
40+ exit-code : 1
41+ severity : CRITICAL,HIGH
Original file line number Diff line number Diff line change 11module github.com/dgraph-io/dgraph/v25
22
3- go 1.25.6
3+ go 1.25.7
44
55require (
66 contrib.go.opencensus.io/exporter/prometheus v0.4.2
@@ -73,7 +73,7 @@ require (
7373)
7474
7575require (
76- filippo.io/edwards25519 v1.1.0 // indirect
76+ filippo.io/edwards25519 v1.1.1 // indirect
7777 github.com/Microsoft/go-winio v0.6.2 // indirect
7878 github.com/agnivade/levenshtein v1.2.1 // indirect
7979 github.com/bahlo/generic-list-go v0.2.0 // indirect
Original file line number Diff line number Diff line change @@ -33,8 +33,8 @@ cloud.google.com/go/storage v1.10.0/go.mod h1:FLPqc6j+Ki4BU591ie1oL6qBQGu2Bl/tZ9
3333contrib.go.opencensus.io/exporter/prometheus v0.4.2 h1:sqfsYl5GIY/L570iT+l93ehxaWJs2/OwXtiWwew3oAg =
3434contrib.go.opencensus.io/exporter/prometheus v0.4.2 /go.mod h1:dvEHbiKmgvbr5pjaF9fpw1KeYcjrnC1J8B+JKjsZyRQ =
3535dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9 /go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU =
36- filippo.io/edwards25519 v1.1.0 h1:FNf4tywRC1HmFuKW5xopWpigGjJKiJSV0Cqo0cJWDaA =
37- filippo.io/edwards25519 v1.1.0 /go.mod h1:BxyFTGdWcka3PhytdK4V28tE5sGfRvvvRV7EaN4VDT4 =
36+ filippo.io/edwards25519 v1.1.1 h1:YpjwWWlNmGIDyXOn8zLzqiD+9TyIlPhGFG96P39uBpw =
37+ filippo.io/edwards25519 v1.1.1 /go.mod h1:BxyFTGdWcka3PhytdK4V28tE5sGfRvvvRV7EaN4VDT4 =
3838github.com/99designs/gqlgen v0.13.0 /go.mod h1:NV130r6f4tpRWuAI+zsrSdooO/eWUv+Gyyoi3rEfXIk =
3939github.com/Azure/go-ansiterm v0.0.0-20250102033503-faa5f7b0171c h1:udKWzYgxTojEKWjV8V+WSxDXJ4NFATAsZjh8iIbsQIg =
4040github.com/Azure/go-ansiterm v0.0.0-20250102033503-faa5f7b0171c /go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E =
You can’t perform that action at this time.
0 commit comments