| commit | d53350c3e34353e167d90765bcd041a8ee899330 | [log] [tgz] |
|---|---|---|
| author | Luca Milanesio <luca.milanesio@gmail.com> | Sat Feb 11 00:00:33 2023 +0000 |
| committer | Luca Milanesio <luca.milanesio@gmail.com> | Tue Feb 14 20:45:18 2023 +0000 |
| tree | 77586c4c97fa9c6e668668f506c145c6567c9c16 | |
| parent | 576907c38a7135ca08f70a2bae48a6b797af0943 [diff] |
Add --require-hashes to all pip install commands 'pip install' should use --require-hashes to assert that the dependencies that are loaded are matching expectations and have not been forged. Bug: Issue 16677 Change-Id: I41abdd85424f7330c4a658ffa4b32c39d8626fcc
This project uses Jenkins Jobs Builder [1] to generate jobs from yaml descriptor files.
To add new jobs reuse existing templates, defaults etc. as much as possible. E.g. adding a job to build an additional branch of a project may be as easy as adding the name of the branch to an existing project.
To ensure well readable yaml-files, use yamllint [2] to lint the yaml-files. Yamllint can be downloaded using Python Pip:
pip3 install --require-hashes yamllint
To run the linter, execute this command from the project's root directory:
yamllint -c yamllint-config.yaml jenkins/**/*.yaml
Yamllint will not fix detected issues itself.
[1] https://docs.openstack.org/infra/jenkins-job-builder/index.html [2] https://pypi.org/project/yamllint/