add workflow, add command to remove deprecated rules

panther-labs · Oct 1, 2024 · bedba3f · bedba3f
2 parents 94026ac + 27ad9f8
commit bedba3f
Show file tree

Hide file tree

Showing 2 changed files with 45 additions and 0 deletions.
diff --git a/.github/workflows/check-deprecated.yml b/.github/workflows/check-deprecated.yml
@@ -0,0 +1,42 @@
+on:
+  pull_request:
+
+permissions:
+    contents: read
+
+jobs:
+  check_removed_rules:
+    name: Check Removed Rules
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
+        with:
+          disable-sudo: true
+          egress-policy: block
+          allowed-endpoints: >
+            files.pythonhosted.org:443
+            github.com:443
+            pypi.org:443
+      - name: Checkout panther-analysis
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 #v4.1.7
+
+      - name: Fetch Release
+        run: |
+          git fetch --depth=1 origin release
+
+      - name: Set python version
+        uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 #v5.2.0
+        with:
+          python-version: "3.11"
+
+      - name: Install pipenv
+        run: pip install pipenv
+
+      - name: Setup venv
+        run: make venv
+
+      - name: Check for Removed Rules
+        run: |
+          pipenv run make check-deprecated
+  
diff --git a/Makefile b/Makefile
@@ -65,6 +65,9 @@ test: global-helpers-unit-test
 check-deprecated:
 	pipenv run python3 ./.scripts/deleted_rules.py check
 
+remove-deprecated:
+	pipenv run python3 ./.scripts/deleted_rules.py remove
+
 docker-build:
 	docker build -t panther-analysis:latest .