Merge pull request #36 from sarg3nt/Create-codeowners-file

Create-codeowners-file
sarg3nt · Oct 30, 2024 · 3cb72ac · 3cb72ac
2 parents cba70d8 + 232bfa2
commit 3cb72ac
Show file tree

Hide file tree

Showing 6 changed files with 19 additions and 5 deletions.
diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
@@ -0,0 +1,11 @@
+# Specify owners for the entire repository
+* @sarg3nt @BrickCForce @Stanrofl @aidanleuck
+
+# Specify owners for specific directories
+# /docs/ @docs-owner
+
+# Specify owners for specific files
+# /scripts/deploy.sh @devops-owner
+
+# Specify owners for specific file types
+# *.md @documentation-owner
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
@@ -14,6 +14,7 @@ permissions:
 
 jobs:
   dependency-review:
+    name: Dependency Review
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner

diff --git a/.github/workflows/release-weekly.yml b/.github/workflows/release-weekly.yml
@@ -19,6 +19,7 @@ permissions: read-all
 
 jobs:
   release-build-and-push:
+    name: Weekly Release Build and Push
     runs-on: ubuntu-latest
     permissions:
       contents: write
@@ -76,7 +77,7 @@ jobs:
       # Docs: https://github.com/marketplace/actions/create-release
       - name: 'Create Release'
         id: create_release
-        uses: ncipollo/release-action@v1
+        uses: ncipollo/release-action@2c591bcc8ecdcd2db72b97d6147f871fcd833ba5
         with:
           body: "A Weekly release contianing upgrades to system packages in the base Rocker Linux container."
           makeLatest: true
@@ -85,14 +86,14 @@ jobs:
 
 
       - name: Log into registry
-        uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
+        uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567
         with:
           registry: ${{ env.REGISTRY }}
           username: ${{ github.actor }}
           password: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Build and push Docker image
-        uses: docker/build-push-action@4f58ea79222b3b9dc2c8bbdd6debcef730109a75 # v6.9.0
+        uses: docker/build-push-action@4f58ea79222b3b9dc2c8bbdd6debcef730109a75
         with:
           push: true
           tags: ${{ env.TAG_MAJOR }},${{ env.TAG_MINOR }},${{ env.TAG_PATCH }},${{ env.TAG_LATEST }}

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -13,6 +13,7 @@ permissions:
 
 jobs:
   build-and-push:
+    name: Build and Push
     runs-on: ubuntu-latest
     permissions:
       contents: read

diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
@@ -19,7 +19,7 @@ permissions: read-all
 
 jobs:
   analysis:
-    name: Scorecard analysis
+    name: Scorecard Analysis
     runs-on: ubuntu-latest
     permissions:
       # Needed to upload the results to code-scanning dashboard.

diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml
@@ -23,11 +23,11 @@ permissions:
 
 jobs:
   trivy-scan:
+    name: Trivy Scan
     permissions:
       contents: write # for actions/checkout to fetch code and for SBOM to push results
       security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
       actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
-    name: Build
     runs-on: "ubuntu-20.04"
     steps:
       - name: Harden Runner