test(scripts): fix Pester assertion syntax and add tar extraction tests #502
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: PR Validation | |
| on: | |
| pull_request: | |
| types: [opened, synchronize, reopened] | |
| branches: | |
| - main | |
| - develop | |
| workflow_dispatch: | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.run_id }} | |
| cancel-in-progress: true | |
| # Minimal permissions for security | |
| permissions: | |
| contents: read | |
| jobs: | |
| spell-check: | |
| name: Spell Check | |
| uses: ./.github/workflows/spell-check.yml | |
| permissions: | |
| contents: read | |
| with: | |
| soft-fail: false | |
| markdown-lint: | |
| name: Markdown Lint | |
| uses: ./.github/workflows/markdown-lint.yml | |
| permissions: | |
| contents: read | |
| with: | |
| soft-fail: false | |
| table-format: | |
| name: Table Format Check | |
| uses: ./.github/workflows/table-format.yml | |
| permissions: | |
| contents: read | |
| with: | |
| soft-fail: false | |
| psscriptanalyzer: | |
| name: PowerShell Lint | |
| uses: ./.github/workflows/ps-script-analyzer.yml | |
| permissions: | |
| contents: read | |
| with: | |
| soft-fail: false | |
| changed-files-only: true | |
| yaml-lint: | |
| name: YAML Lint | |
| uses: ./.github/workflows/yaml-lint.yml | |
| permissions: | |
| contents: read | |
| with: | |
| soft-fail: false | |
| changed-files-only: true | |
| pester-tests: | |
| name: PowerShell Tests | |
| uses: ./.github/workflows/pester-tests.yml | |
| permissions: | |
| contents: read | |
| id-token: write | |
| with: | |
| soft-fail: false | |
| changed-files-only: false | |
| code-coverage: true | |
| frontmatter-validation: | |
| name: Frontmatter Validation | |
| uses: ./.github/workflows/frontmatter-validation.yml | |
| permissions: | |
| contents: read | |
| with: | |
| soft-fail: false | |
| changed-files-only: true | |
| skip-footer-validation: false | |
| warnings-as-errors: true | |
| link-lang-check: | |
| name: Link Language Check | |
| uses: ./.github/workflows/link-lang-check.yml | |
| permissions: | |
| contents: read | |
| with: | |
| soft-fail: false | |
| markdown-link-check: | |
| name: Markdown Link Check | |
| uses: ./.github/workflows/markdown-link-check.yml | |
| permissions: | |
| contents: read | |
| with: | |
| soft-fail: true | |
| dependency-pinning-check: | |
| name: Validate Dependency Pinning | |
| uses: ./.github/workflows/dependency-pinning-scan.yml | |
| permissions: | |
| contents: read | |
| security-events: write | |
| with: | |
| soft-fail: false | |
| upload-sarif: true | |
| upload-artifact: false | |
| npm-audit: | |
| name: npm Security Audit | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: read | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v4.2.2 | |
| with: | |
| persist-credentials: false | |
| - name: Setup Node.js | |
| uses: actions/setup-node@6044e13b5dc448c55e2357c09f80417699197238 # v4.1.0 | |
| with: | |
| node-version: '20' | |
| cache: 'npm' | |
| - name: Install dependencies | |
| run: npm ci | |
| - name: Run security audit | |
| run: npm audit --audit-level=moderate | |
| codeql: | |
| name: CodeQL Security Analysis | |
| uses: ./.github/workflows/codeql-analysis.yml | |
| permissions: | |
| contents: read | |
| security-events: write | |
| actions: read |