Files
Kill_LIFE/.github/workflows/ci_cd_audit.yml
T
Workflow config file is invalid. Please check your config file: model.ReadWorkflow: yaml: unmarshal errors: line 4: cannot unmarshal !!str `Planifi...` into model.Workflow
Clément SAILLANT 124906d084 feat: Add comprehensive CI/CD workflows and badges for compliance, security, and quality assurance
- Introduced multiple guides for workflows including Evidence Pack Validation, Incident Response, Model Validation, Performance & HIL, Release Signing, SBOM Validation, Secret Scanning, and Supply Chain Attestation.
- Created dynamic badges for each workflow to reflect their status and compliance.
- Implemented a checklist for validating CI/CD workflows and evidence packs.
- Developed scripts for building firmware, testing, collecting evidence, and generating audit reports.
- Added tools for generating community, documentation, quality, and security badges based on various reports.
- Established endpoints for dynamic badges to be integrated into documentation and README files.
- Enhanced the overall structure and traceability of CI/CD processes with evidence packs and automated checks.
2026-02-19 08:58:10 +01:00

50 lines
1.4 KiB
YAML
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
# Audit CI/CD automatique à chaque release majeure
## Objectif
Planifier et exécuter un audit automatisé de la checklist badge & evidence pack à chaque release majeure.
## Workflow recommandé
- Utiliser GitHub Actions pour déclencher laudit lors dun tag de release majeure (vX.0.0).
- Exécuter tools/auto_check_ci_cd.py pour valider la checklist.
- Publier le rapport daudit dans docs/evidence/ et sur GitHub Pages.
## Exemple de workflow (ci_cd_audit.yml)
```yaml
name: CI/CD Audit Checklist
on:
push:
tags:
- 'v*.*.*'
workflow_dispatch:
jobs:
audit-checklist:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Installer Python
uses: actions/setup-python@v4
with:
python-version: '3.10'
- name: Installer dépendances
run: |
pip install -r requirements-mistral.txt
- name: Exécuter audit checklist
run: |
python3 tools/auto_check_ci_cd.py > docs/evidence/ci_cd_audit_report.txt
- name: Publier rapport sur GitHub Pages
run: |
cp docs/evidence/ci_cd_audit_report.txt public/
```
## Vérification
- Le rapport daudit est accessible dans docs/evidence/ et sur GitHub Pages.
- La checklist badge & evidence pack est validée à chaque release majeure.
---
> Ce workflow peut être adapté pour inclure dautres scripts ou rapports daudit.