From 57d9e332162770e1da927a1e8eb2e10bd9f6d2e8 Mon Sep 17 00:00:00 2001 From: Eddy Filip Date: Tue, 28 May 2024 10:11:44 +0200 Subject: [PATCH] Add check-signed-commits-action Add the check-signed-commits-action that will leave a handy comment if a PR contains commits that are not signed. --- .github/workflows/pr-check-signed-commits.yml | 13 +++++++ test.yaml | 38 +++++++++++++++++++ 2 files changed, 51 insertions(+) create mode 100644 .github/workflows/pr-check-signed-commits.yml create mode 100644 test.yaml diff --git a/.github/workflows/pr-check-signed-commits.yml b/.github/workflows/pr-check-signed-commits.yml new file mode 100644 index 0000000..77a8b8a --- /dev/null +++ b/.github/workflows/pr-check-signed-commits.yml @@ -0,0 +1,13 @@ +name: Check signed commits in PR +on: pull_request_target + +jobs: + build: + name: Check signed commits in PR + permissions: + contents: read + pull-requests: write + runs-on: ubuntu-latest + steps: + - name: Check signed commits in PR + uses: 1Password/check-signed-commits-action@v1 diff --git a/test.yaml b/test.yaml new file mode 100644 index 0000000..4504c80 --- /dev/null +++ b/test.yaml @@ -0,0 +1,38 @@ +apiVersion: apps/v1 +kind: Deployment +metadata: + name: app-example +spec: + selector: + matchLabels: + app: app-example + template: + metadata: + annotations: + operator.1password.io/inject: "app-example1" + labels: + app: app-example + spec: + containers: + - name: app-example1 + image: debian + volumeMounts: + - name: redis + mountPath: /etc/redis + command: ["printenv"] + args: ["DB_USERNAME", "DB_PASSWORD"] + env: + - name: OP_CONNECT_HOST + value: http://onepassword-connect:8080 + - name: OP_CONNECT_TOKEN + valueFrom: + secretKeyRef: + name: onepassword-token + key: token + - name: DB_USERNAME + value: your-secret-reference + - name: DB_PASSWORD + value: another-secret-reference + volumes: + - name: redis + emptyDir: {}