diff --git a/.github/workflows/build-and-test.yml b/.github/workflows/build-and-test.yml index b54557804..ab918ad11 100644 --- a/.github/workflows/build-and-test.yml +++ b/.github/workflows/build-and-test.yml @@ -16,7 +16,7 @@ env: jobs: test: name: test-node-${{ matrix.node-version }} - runs-on: runs-on,runner=4cpu-linux-x64 + runs-on: runs-on=${{ github.run_id }}-test-${{ github.run_attempt }}-${{ strategy.job-index }},runner=4cpu-linux-x64 strategy: fail-fast: true # if one job fails, stop the rest matrix: @@ -53,7 +53,7 @@ jobs: path: ./test-reports test-summary-publish: - runs-on: runs-on,runner=4cpu-linux-x64 + runs-on: runs-on=${{ github.run_id }}-test-summary-publish-${{ github.run_attempt }},runner=4cpu-linux-x64 needs: [test] steps: - name: Test summary @@ -62,7 +62,7 @@ jobs: paths: ./test-reports/**/*.xml lint-check: - runs-on: runs-on,runner=4cpu-linux-x64 + runs-on: runs-on=${{ github.run_id }}-lint-check-${{ github.run_attempt }},runner=4cpu-linux-x64 steps: - uses: actions/checkout@v5 - uses: ./.github/actions/prepare-repository @@ -71,7 +71,7 @@ jobs: run: yarn lint:check publish: - runs-on: runs-on,runner=4cpu-linux-x64 + runs-on: runs-on=${{ github.run_id }}-publish-${{ github.run_attempt }},runner=4cpu-linux-x64 if: github.event_name == 'release' needs: - test diff --git a/.github/workflows/rca.yml b/.github/workflows/rca.yml new file mode 100644 index 000000000..88c9dbbc9 --- /dev/null +++ b/.github/workflows/rca.yml @@ -0,0 +1,20 @@ +name: Repository Auditor + +on: + pull_request: + push: + branches: [master, main] + +jobs: + audit: + runs-on: ubuntu-latest + permissions: + contents: read + + steps: + - uses: airtasker/repository-configuration-auditor@v1 + with: + repository: ${{ github.repository }} + ref: ${{ github.sha }} + github-token: ${{ secrets.GH_PAT_REPO_READONLY }} + rca_ref: ${{ github.action_ref }}