#34 Check for security vulnerability advisories when...

#34 Check for security vulnerability advisories when running check for updates as well

test-and-deploy.yml

@@ -713,3 +713,26 @@ Debug:
       - $CHECKUPDATES
     refs:
       - develop
+
+.check4security:
+  stage: validation
+  tags:
+    - default
+  image: registry.lakedrops.com/docker/gitlab-drupal-ci/php-${PHP_MAJOR_VERSION}.${PHP_MINOR_VERSION}
+  cache: {}
+  before_script:
+    - !reference [.prepareaccess, before_script]
+    - !reference [.preparecomposerplugins, before_script]
+  script:
+    - rm /tmp/test.log >/dev/null 2>&1 || true
+    - composer audit --format=plain >/tmp/test.log 2>&1
+    - EC=0
+    - grep "No security vulnerability advisories found" /tmp/test.log || EC=$?
+    - if [[ $EC -eq 0 ]]; then exit 0; fi
+    - glab issue create --title "Security vulnerability advisories found" --description "$(cat /tmp/test.log)"
+    - rm /tmp/test.log >/dev/null 2>&1 || true
+  only:
+    variables:
+      - $CHECKUPDATES
+    refs:
+      - develop