Merge pull request #3 from opensearch-project/sreekarj_wss

Include publish to maven local for the whitesource scan to mitigate build failures in the plugin repos.
opensearch-project · Apr 22, 2021 · 3223a65 · 3223a65
2 parents a5410a4 + 50836e3
commit 3223a65
Showing 1 changed file with 13 additions and 1 deletion.
diff --git a/.github/workflows/check-vulnerability-whitesource.yml b/.github/workflows/check-vulnerability-whitesource.yml
@@ -32,7 +32,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        java: [11]
+        java: [14]
         go-version: [1.14]
     steps:
       - uses: actions/checkout@v1
@@ -44,6 +44,13 @@ jobs:
         uses: actions/setup-go@v2
         with:
           go-version: ${{ matrix.go-version }}
+      - uses: actions/checkout@v1
+      - name: Configure AWS Credentials
+        uses: aws-actions/configure-aws-credentials@v1
+        with:
+          aws-access-key-id: ${{ secrets.AWS_MAVEN_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_MAVEN_SECRET_ACCESS_KEY }}
+          aws-region: us-west-2
       - name: Vulnerability Scan
         id: vulnerability_scan
         env:
@@ -62,6 +69,11 @@ jobs:
           sudo yum install yarn -y
           export PATH=$PATH:/opt/gradle/gradle-6.7/bin
           gradle -v; mvn -v ; npm -v; yarn -v
+          # This step is needed to avoid build failures in few plugins
+          # No ETA on when this dependency can be removed 
+          git clone https://github.com/opensearch-project/OpenSearch.git
+          cd OpenSearch
+          gradle publishToMavenLocal; cd ..
           ./wss-scan.sh
           echo ::set-output name=mail_content::$(cat output.md)
           cat whitesource/*/*