Merge pull request #62 from essentialkaos/develop

Migration from Travis CI to GitHub Actions

Author: andyone

.github/workflows/ci.yml

@@ -0,0 +1,96 @@
+name: CI
+
+on:
+  push:
+    branches: [master, develop]
+  pull_request:
+    branches: [master]
+  schedule:
+    - cron: '0 13 */15 * *'
+
+jobs:
+  Go:
+    name: Go
+    runs-on: ubuntu-latest
+
+    env:
+      SRC_DIR: src/github.com/${{ github.repository }}
+
+    strategy:
+      matrix:
+        go: [ '1.14.x', '1.15.x' ]
+
+    steps:
+      - name: Set up Go
+        uses: actions/setup-go@v2
+        with:
+          go-version: ${{ matrix.go }}
+        id: go
+
+      - name: Setup PATH
+        run: |
+          echo "GOPATH=${{ github.workspace }}" >> "$GITHUB_ENV"
+          echo "GOBIN=${{ github.workspace }}/bin" >> "$GITHUB_ENV"
+          echo "${{ github.workspace }}/bin" >> "$GITHUB_PATH"
+
+      - name: Checkout
+        uses: actions/checkout@v2
+        with:
+          path: ${{env.SRC_DIR}}
+
+      - name: Download dependencies
+        working-directory: ${{env.SRC_DIR}}
+        run: make deps
+
+      - name: Build binary
+        working-directory: ${{env.SRC_DIR}}
+        run: make all
+
+  Perfecto:
+    name: Perfecto
+    runs-on: ubuntu-latest
+
+    needs: Go
+
+    steps:
+      - name: Code checkout
+        uses: actions/checkout@v2
+
+      - name: Run Perfecto docker image
+        uses: docker://essentialkaos/perfecto:slim
+        with:
+          args: --version
+
+      - name: Install perfecto-docker
+        run: |
+          wget https://kaos.sh/perfecto/perfecto-docker
+          chmod +x perfecto-docker
+
+      - name: Run Perfecto check
+        env:
+          IMAGE: essentialkaos/perfecto:slim
+        run: ./perfecto-docker common/sslcli.spec
+
+  Hadolint:
+    name: Hadolint
+    runs-on: ubuntu-latest
+
+    needs: Go
+
+    env:
+      HADOLINT_VERSION: 1.18.2
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v2
+
+      - name: Install Hadolint
+        run: |
+          wget -O hadolint https://github.com/hadolint/hadolint/releases/download/v${HADOLINT_VERSION}/hadolint-Linux-x86_64
+          chmod +x hadolint
+      
+      - name: Print Hadolint version info
+        run: ./hadolint --version
+
+      - name: Check Docker files
+        run: ./hadolint Dockerfile

.github/workflows/codeql-analysis.yml .github/workflows/codeql.yml.github/workflows/codeql-analysis.yml renamed to .github/workflows/codeql.yml

@@ -3,7 +3,7 @@
 <p align="center">
   <a href="https://goreportcard.com/report/github.com/essentialkaos/sslcli"><img src="https://goreportcard.com/badge/github.com/essentialkaos/sslcli"></a>
   <a href="https://codebeat.co/projects/github-com-essentialkaos-sslcli-master"><img src="https://codebeat.co/badges/edc52bb1-c807-470b-8466-b86cc0cfcdbe"></a>
-  <a href="https://travis-ci.com/essentialkaos/sslcli"><img src="https://travis-ci.com/essentialkaos/sslcli.svg"></a>
+  <a href="https://github.com/essentialkaos/sslcli/actions"><img src="https://github.com/essentialkaos/sslcli/workflows/CI/badge.svg" alt="GitHub Actions Status" /></a>
   <a href="https://github.com/essentialkaos/sslcli/actions?query=workflow%3ACodeQL"><img src="https://github.com/essentialkaos/sslcli/workflows/CodeQL/badge.svg" /></a>
   <a href="#license"><img src="https://gh.kaos.st/apache2.svg"></a>
 </p>
@@ -24,13 +24,7 @@
 
 #### From source
 
-Before the initial install allows git to use redirects for [pkg.re](https://github.com/essentialkaos/pkgre) service (_reason why you should do this described [here](https://github.com/essentialkaos/pkgre#git-support)_):
-
-```
-git config --global http.https://pkg.re.followRedirects true
-```
-
-To build the SSLScan Client from scratch, make sure you have a working Go 1.12+ workspace ([instructions](https://golang.org/doc/install)), then:
+To build the SSLScan Client from scratch, make sure you have a working Go 1.14+ workspace ([instructions](https://golang.org/doc/install)), then:
 
 ```
 go get github.com/essentialkaos/sslcli
@@ -42,18 +36,11 @@ If you want update SSLScan Client to latest stable release, do:
 go get -u github.com/essentialkaos/sslcli
 ```
 
-#### From ESSENTIAL KAOS Public repo for RHEL6/CentOS6
-
-```bash
-[sudo] yum install -y https://yum.kaos.st/kaos-repo-latest.el6.noarch.rpm
-[sudo] yum install sslcli
-```
-
-#### From ESSENTIAL KAOS Public repo for RHEL7/CentOS7
+#### From [ESSENTIAL KAOS Public Repository](https://yum.kaos.st)
 
 ```bash
-[sudo] yum install -y https://yum.kaos.st/kaos-repo-latest.el7.noarch.rpm
-[sudo] yum install sslcli
+sudo yum install -y https://yum.kaos.st/get/$(uname -r).rpm
+sudo yum install yo
 ```
 
 #### Prebuilt binaries
@@ -125,8 +112,8 @@ Examples
 
 | Branch | Status |
 |--------|--------|
-| `master` | [![Build Status](https://travis-ci.com/essentialkaos/sslcli.svg?branch=master)](https://travis-ci.com/essentialkaos/sslcli) |
-| `develop` | [![Build Status](https://travis-ci.com/essentialkaos/sslcli.svg?branch=develop)](https://travis-ci.com/essentialkaos/sslcli) |
+| `master` | [![CI](https://github.com/essentialkaos/sslcli/workflows/CI/badge.svg?branch=master)](https://github.com/essentialkaos/sslcli/actions) |
+| `develop` | [![CI](https://github.com/essentialkaos/sslcli/workflows/CI/badge.svg?branch=develop)](https://github.com/essentialkaos/sslcli/actions) |
 
 ### Contributing
 

.travis.yml

@@ -0,0 +1,36 @@
+# Security Policies and Procedures
+
+This document outlines security procedures and general policies for all
+ESSENTIAL KAOS projects.
+
+  * [Reporting a Bug](#reporting-a-bug)
+  * [Disclosure Policy](#disclosure-policy)
+
+## Reporting a Bug
+
+The ESSENTIAL KAOS team and community take all security bugs in our projects
+very seriously. Thank you for improving the security of our project. We
+appreciate your efforts and responsible disclosure and will make every effort
+to acknowledge your contributions.
+
+Report security bugs by emailing our security team at security@essentialkaos.com.
+
+The security team will acknowledge your email within 48 hours and will send a
+more detailed response within 48 hours, indicating the next steps in handling
+your report. After the initial reply to your report, the security team will
+endeavor to keep you informed of the progress towards a fix and full
+announcement, and may ask for additional information or guidance.
+
+Report security bugs in third-party dependencies to the person or team
+maintaining the dependencies.
+
+## Disclosure Policy
+
+When the security team receives a security bug report, they will assign it to a
+primary handler. This person will coordinate the fix and release process,
+involving the following steps:
+
+  * Confirm the problem and determine the affected versions;
+  * Audit code to find any similar potential problems;
+  * Prepare fixes for all releases still under maintenance. These fixes will be
+    released as fast as possible.