Ppha 588 create the review environment and pr trigger#282
Ppha 588 create the review environment and pr trigger#282mrlockstar wants to merge 11 commits intomainfrom
Conversation
mrlockstar
force-pushed
the
PPHA-588-Create-the-Review-environment-and-pr-trigger
branch
from
7bb65f7 to
633e540
Compare
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
|
|
||
| - name: Call deployment pipeline | ||
| run: | | ||
| if [[ -n "${{inputs.pr_number}}" ]]; then |
Check failure
Code scanning / SonarCloud
GitHub Actions should not be vulnerable to script injections High
| - name: Call deployment pipeline | ||
| run: | | ||
| if [[ -n "${{inputs.pr_number}}" ]]; then | ||
| pr_argument="prNumber=${{inputs.pr_number}}" |
Check failure
Code scanning / SonarCloud
GitHub Actions should not be vulnerable to script injections High
|
|
||
| echo "Starting Azure devops pipeline \"Deploy to Azure - ${{ matrix.environment }}\"..." | ||
| RUN_ID=$(az pipelines run \ | ||
| --commit-id ${{inputs.commit_sha}} \ |
Check failure
Code scanning / SonarCloud
GitHub Actions should not be vulnerable to script injections High
| --name "Deploy to Azure - ${{ matrix.environment }}" \ | ||
| --org https://dev.azure.com/nhse-dtos \ | ||
| --project lung-cancer-risk-check \ | ||
| --parameters commitSHA=${{inputs.commit_sha}} ${pr_argument} environment=${{ matrix.environment }} pool=${ADO_MANAGEMENT_POOL} \ |
Check failure
Code scanning / SonarCloud
GitHub Actions should not be vulnerable to script injections High
| run: | | ||
| dns_zone_name=$( grep dns_zone_name infrastructure/environments/${{ matrix.environment }}/variables.tfvars | awk -F'"' '{print $2}' ) | ||
| use_apex_domain=$( grep use_apex_domain infrastructure/environments/${{ matrix.environment }}/variables.tfvars | awk '{print $3}' || echo "false" ) | ||
| scripts/bash/container_app_smoke_test.sh "${{ matrix.environment }}" "${{ inputs.commit_sha }}" "${dns_zone_name}" "${{inputs.pr_number}}" "${use_apex_domain}" |
Check failure
Code scanning / SonarCloud
GitHub Actions should not be vulnerable to script injections High
| run: | | ||
| dns_zone_name=$( grep dns_zone_name infrastructure/environments/${{ matrix.environment }}/variables.tfvars | awk -F'"' '{print $2}' ) | ||
| use_apex_domain=$( grep use_apex_domain infrastructure/environments/${{ matrix.environment }}/variables.tfvars | awk '{print $3}' || echo "false" ) | ||
| scripts/bash/container_app_smoke_test.sh "${{ matrix.environment }}" "${{ inputs.commit_sha }}" "${dns_zone_name}" "${{inputs.pr_number}}" "${use_apex_domain}" |
Check failure
Code scanning / SonarCloud
GitHub Actions should not be vulnerable to script injections High
|
1 participant
What is the change?
Why are we making this change?