Doug/fix example workflows to use socket container (#103)

dacoburn · web-flow · commit e90151505002 · 2025-07-24T19:32:37.000-07:00
* Updated workflow examples to use Socket Container

* Updated examples not to do an extra version check
diff --git a/pyproject.toml b/pyproject.toml
@@ -6,7 +6,7 @@ build-backend = "hatchling.build"
 
 [project]
 name = "socketsecurity"
-version = "2.1.24"
+version = "2.1.26"
 requires-python = ">= 3.10"
 license = {"file" = "LICENSE"}
 dependencies = [
diff --git a/socketsecurity/__init__.py b/socketsecurity/__init__.py
@@ -1,2 +1,2 @@
 __author__ = 'socket.dev'
-__version__ = '2.1.24'
+__version__ = '2.1.26'
diff --git a/workflows/bitbucket-pipelines.yml b/workflows/bitbucket-pipelines.yml
@@ -2,17 +2,13 @@
 # This pipeline runs Socket Security scans on every commit to any branch
 # The CLI automatically detects most information from the git repository
 
-image: python:3.12-slim
+image: socketdev/cli:latest
 
 definitions:
   steps:
     - step: &socket-scan
         name: Socket Security Scan
-        caches:
-          - pip
         script:
-          - pip install --upgrade pip
-          - pip install socketsecurity
           # Run Socket CLI with minimal required parameters
           # The CLI automatically detects:
           # - Repository name from git
diff --git a/workflows/github-actions.yml b/workflows/github-actions.yml
@@ -26,19 +26,15 @@ jobs:
       pull-requests: write
     runs-on: ubuntu-latest
     
+    # Option 1: Use the official Socket CLI container (faster, more reliable)
+    container: socketdev/cli:latest
+    
     steps:
       - uses: actions/checkout@v4
         with:
           # For PRs, fetch one additional commit for proper diff analysis
           fetch-depth: ${{ github.event_name == 'pull_request' && 2 || 0 }}
       
-      - uses: actions/setup-python@v5
-        with:
-          python-version: '3.12'
-      
-      - name: Install Socket CLI
-        run: pip install socketsecurity --upgrade
-      
       - name: Run Socket Security Scan
         env:
           SOCKET_SECURITY_API_KEY: ${{ secrets.SOCKET_SECURITY_API_KEY }}
diff --git a/workflows/gitlab-ci.yml b/workflows/gitlab-ci.yml
@@ -7,7 +7,7 @@ stages:
 
 socket-security:
   stage: security-scan
-  image: python:3.12-slim
+  image: socketdev/cli:latest
   
   # Run on all branches and merge requests
   rules:
@@ -23,10 +23,6 @@ socket-security:
     paths:
       - .cache/pip/
   
-  before_script:
-    - pip install --upgrade pip
-    - pip install socketsecurity
-  
   script:
     # Run Socket CLI with minimal required parameters
     # The CLI automatically detects:

Original file line number	Diff line number	Diff line change
`@@ -1,2 +1,2 @@`
`1`	`1`	`__author__ = 'socket.dev'`
`2`		`-__version__ = '2.1.24'`
	`2`	`+__version__ = '2.1.26'`