feat(build): Add OpenSSL CMake config step to libcrypto search #11614
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| name: Compliance | |
| on: | |
| push: | |
| branches: [main] | |
| pull_request: | |
| branches: [main] | |
| merge_group: | |
| types: [checks_requested] | |
| branches: [main] | |
| permissions: | |
| contents: read # This is required for actions/checkout | |
| id-token: write # This is required for requesting the JWT/OIDC | |
| statuses: write # Required for dependabot PRs https://github.com/ouzi-dev/commit-status-updater?tab=readme-ov-file#workflow-permissions | |
| jobs: | |
| duvet: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Clone s2n-tls | |
| uses: actions/checkout@v5 | |
| - name: Run duvet action | |
| uses: awslabs/duvet-action@v1 | |
| with: | |
| duvet-version: 0.3.0 # Pin until we fix parsing issues | |
| report-script: compliance/generate_report.sh | |
| role-to-assume: arn:aws:iam::024603541914:role/GitHubOIDCRole | |
| role-session-name: S2ntlsGHAS3Session | |
| aws-s3-bucket-name: s2n-tls-ci-artifacts | |
| aws-s3-region: us-west-2 | |
| cdn: https://d3fqnyekunr9xg.cloudfront.net | |
| - name: Extract RFC spec data | |
| working-directory: ./compliance | |
| run: ./initialize_duvet.sh | |
| shell: bash | |
| - name: Check if there are uncommitted changes | |
| run: | | |
| # If this fails you need to run `cd compliance && ./compliance/initialize_duvet.sh` | |
| # | |
| # Use 'git status --porcelain' instead of 'git diff --exit-code' since git diff | |
| # only detects diffs but fails to detect new files. | |
| git_status=$(git status --porcelain) | |
| if [ -n "$git_status" ]; then | |
| echo "Found uncommitted changes:" | |
| echo "$git_status" | |
| exit 1 | |
| else | |
| echo "Workspace is clean" | |
| fi | |
| shell: bash |