fpm/.woodpecker/lint.yml

---
steps:
  gitleaks:
    image: zricethezav/gitleaks:v8.18.0@sha256:e5f6d1a62786affd1abd882ecc73e9353ce78adea1650711f6e351767723712d
    commands:
      - gitleaks detect --no-git --verbose --source $CI_WORKSPACE
    when:
      event:
        exclude:
          - tag

  hadolint:
    image: pipelinecomponents/hadolint:0.25.9@sha256:430e949e6554d56ffc2dd08898ee609c71822d7fa1033f7c4dc240e90f2aac23
    commands:
      - hadolint Dockerfile
    when:
      event:
        exclude:
          - tag

  shellcheck:
    image: koalaman/shellcheck-alpine:stable@sha256:f73b035c8ebfc8a66ba54e07af5cc41e790cf41fff45317914b1ce677dd9cada
    commands:
      - "find . -name *.sh -exec shellcheck {} +"
    when:
      event:
        exclude:
          - tag