Update run service and dockerfile

cookpad · Mar 28, 2022 · b068f8f · b068f8f
1 parent 7b5711d
commit b068f8f
Show file tree

Hide file tree

Showing 5 changed files with 25 additions and 11 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,5 +1,13 @@
 # Changelog
 
+## v1.0.3
+
+- Use token authentication correctly
+
+## v1.0.2
+
+- More useful verbose output
+
 ## v1.0.1
 
 - Modify and update for Cookpad

diff --git a/Dockerfile b/Dockerfile
@@ -1,6 +1,6 @@
 FROM ruby:2.7.5-alpine
 
-RUN gem install brakeman
+RUN gem install brakeman -v 5.2.1
 
 COPY lib /action/lib
 

diff --git a/README.md b/README.md
@@ -1,13 +1,19 @@
-## Brakeman github action
+## Brakeman results parser github action
 
 Brakeman is a static analysis tool which checks Ruby on Rails applications for security vulnerabilities.
-[See more](https://github.com/presidentbeef/brakeman)
+
+You can read more about Brakeman itself [here](https://github.com/presidentbeef/brakeman).
+
+This action helps make sure that brakeman results get accurately added to pull requests, in the event of a new issue.
+
+Currently we hardcode the brakeman version (5.2.1) to prevent the unintended consequences of pulling down the latest version
+regardless of context.
 
 ### Usage
 
 ```yml
 - name: Brakeman
-  uses: cookpad/[email protected].1
+  uses: cookpad/[email protected].3
   env:
     GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
 ```
@@ -22,7 +28,7 @@ Brakeman is a static analysis tool which checks Ruby on Rails applications for s
   run: |
     brakeman -f json > tmp/brakeman.json || exit 0
 - name: Brakeman
-  uses: cookpad/[email protected].1
+  uses: cookpad/[email protected].3
   env:
     GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
     REPORT_PATH: tmp/brakeman.json
@@ -32,7 +38,7 @@ Brakeman is a static analysis tool which checks Ruby on Rails applications for s
 
 ```yml
 - name: Brakeman
-  uses: cookpad/[email protected].1
+  uses: cookpad/[email protected].3
   env:
     GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
     PROJECT_PATH: my_rails_app
@@ -51,7 +57,7 @@ jobs:
     steps:
     - uses: actions/checkout@v1
     - name: Brakeman
-      uses: cookpad/[email protected].1
+      uses: cookpad/[email protected].3
       env:
         GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
 ```

diff --git a/lib/github_check_run_service.rb b/lib/github_check_run_service.rb
@@ -16,18 +16,19 @@ def run
       endpoint_url,
       create_check_payload
     )['id']
+    puts id
     @summary = @report_adapter.summary(@report)
     @annotations = @report_adapter.annotations(@report)
     @conclusion = @report_adapter.conslusion(@report)
 
-    pp '$' * 20
-    pp '%' * 20
+    puts @summary
 
     result = {}
     @annotations.each_slice(MAX_ANNOTATIONS_SIZE) do |annotations|
       result.merge(client_patch(id, annotations))
     end
     result
+    puts result
   end
 
   private

diff --git a/lib/github_client.rb b/lib/github_client.rb
@@ -23,8 +23,7 @@ def post(url, body = {})
   def headers
     @headers ||= {
       "Content-Type": 'application/json',
-      "Accept": 'application/vnd.github.antiope-preview+json',
-      "Authorization": "Bearer #{@github_token}",
+      "Authorization": "token #{@github_token}",
       "User-Agent": @user_agent
     }
   end