chore(TPSVC-20719): dependabot (#36)

Talend · Dec 28, 2023 · bbc1a6e · bbc1a6e
1 parent 2c3a8e5
commit bbc1a6e
Show file tree

Hide file tree

Showing 7 changed files with 71 additions and 20 deletions.
diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
@@ -1 +1,5 @@
 * @Talend/tpsvc-dev
+
+# Specific ownership for CI/dependabot automation
+.github/workflows/** @Talend/tpsvc-dev @build-talend-tpsvc
+**.gradle @Talend/tpsvc-dev @build-talend-tpsvc
diff --git a/.github/workflows/commit.yml b/.github/workflows/commit.yml
@@ -0,0 +1,17 @@
+---
+name: Conventional commit
+on:
+  pull_request:
+
+jobs:
+  lint:
+    name: Lint
+    runs-on: ubuntu-latest
+    env:
+      GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+    steps:
+      - uses: actions/checkout@v2
+        with:
+          fetch-depth: 0
+      - uses: wagoid/commitlint-github-action@v4
+        if: ${{ github.actor != 'dependabot[bot]' }}
diff --git a/.github/workflows/dependabot-pr-validation.yaml b/.github/workflows/dependabot-pr-validation.yaml
@@ -0,0 +1,25 @@
+name: Dependabot CI
+
+on: pull_request
+
+permissions:
+  pull-requests: write
+
+jobs:
+  pr-validation:
+    runs-on:
+      - self-hosted
+      - Linux
+      - X64
+    if: ${{ github.actor == 'dependabot[bot]' }}
+    steps:
+      - name: "Checkout sources"
+        uses: actions/checkout@v3
+        with:
+          token: ${{ secrets.GIT_ACTION_TOKEN }}
+      - name: "Install gh cli"
+        uses: asdf-vm/actions/install@v1
+      - name: "PR validation"
+        uses: Talend/github-actions/dependabot-pr-validation@dependabot_pr_validation-v1.0.2
+        with:
+          github_token: ${{ secrets.GIT_ACTION_TOKEN }}
diff --git a/.tool-versions b/.tool-versions
@@ -0,0 +1 @@
+github-cli 2.31.0
diff --git a/build.gradle b/build.gradle
@@ -1,4 +1,27 @@
 buildscript {
+    ext {
+        tsbiFrameworkVersion="3.2"
+        tsbiBomVersion="0.0.5"
+        springBootVersion="3.2.0"
+
+        securityBomVersion="4.2.0"
+
+        checkstyleVersion="10.3.4"
+        pmdVersion="6.55.0"
+        jacocoVersion="0.8.11"
+        spotbugsVersion="4.8.1"
+        spotbugsPluginVersion="4.6.0"
+        sonarqubePluginVersion="4.4.1.3373"
+
+        reckonVersion="0.13.1"
+        // workaround for reckon issue with Java 8
+        grgitVersion="5.2.0"
+
+        testngVersion="6.4"
+        jakartaVersion="6.0.0"
+        jakartaValidationVersion="3.0.2"
+
+    }
     repositories {
         gradlePluginPortal()
     }

diff --git a/dependencies.gradle b/dependencies.gradle
@@ -8,7 +8,7 @@ configurations.all {
 
 dependencyManagement {
     imports {
-        mavenBom "org.talend.tsbi.java.springboot-bom:$tsbiBomVersion"
+        mavenBom "org.talend.tsbi.java.springboot-bom:$tsbiFrameworkVersion:$tsbiBomVersion"
     }
 
     dependencies {

diff --git a/gradle.properties b/gradle.properties