Merge branch 'main' into phantsure/pages-validate

This commit is contained in:
Aparna Ravindra
2022-10-12 20:29:08 +05:30
committed by GitHub
26 changed files with 330 additions and 42 deletions
+1 -1
View File
@@ -9,7 +9,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: 'Auto-assign issue'
uses: pozil/auto-assign-issue@v1.10.0
uses: pozil/auto-assign-issue@v1.10.1
with:
assignees: phantsure,tiwarishub,anuragc617,vsvipul,bishal-pdmsft
numOfAssignee: 1
+1 -1
View File
@@ -13,7 +13,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- uses: actions/stale@v5
- uses: actions/stale@v6
with:
stale-issue-message: 'This issue has become stale and will be closed automatically within a period of time. Sorry about that.'
stale-pr-message: 'This pull request has become stale and will be closed automatically within a period of time. Sorry about that.'
+1 -2
View File
@@ -2,8 +2,7 @@ name: Sync workflows for GHES
on:
push:
branches: [ $default-branch ]
workflow_dispatch:
branches: [ main ]
jobs:
sync:
+5 -2
View File
@@ -41,9 +41,9 @@ jobs:
# https://github.com/sigstore/cosign-installer
- name: Install cosign
if: github.event_name != 'pull_request'
uses: sigstore/cosign-installer@7e0881f8fe90b25e305bbf0309761e9314607e25
uses: sigstore/cosign-installer@f3c664df7af409cb4873aa5068053ba9d61a57b6 #v2.6.0
with:
cosign-release: 'v1.9.0'
cosign-release: 'v1.11.0'
# Workaround: https://github.com/docker/build-push-action/issues/461
@@ -78,6 +78,9 @@ jobs:
push: ${{ github.event_name != 'pull_request' }}
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
cache-from: type=gha
cache-to: type=gha,mode=max
# Sign the resulting Docker image digest except on PRs.
# This will only write to the public Rekor transparency log when the Docker
+1 -1
View File
@@ -69,7 +69,7 @@ jobs:
# Install the .NET Core workload
- name: Install .NET Core
uses: actions/setup-dotnet@v2
uses: actions/setup-dotnet@v3
with:
dotnet-version: 6.0.x
+1 -1
View File
@@ -14,7 +14,7 @@ jobs:
steps:
- uses: actions/checkout@v3
- name: Setup .NET
uses: actions/setup-dotnet@v2
uses: actions/setup-dotnet@v3
with:
dotnet-version: 6.0.x
- name: Restore dependencies
+10 -9
View File
@@ -9,7 +9,7 @@
# and parameters, see https://github.com/anchore/scan-action. For more
# information on Anchore's container image scanning tool Grype, see
# https://github.com/anchore/grype
name: Anchore Container Scan
name: Anchore Grype vulnerability scan
on:
push:
@@ -28,20 +28,21 @@ jobs:
permissions:
contents: read # for actions/checkout to fetch code
security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
runs-on: ubuntu-latest
steps:
- name: Checkout the code
- name: Check out the code
uses: actions/checkout@v3
- name: Build the Docker image
run: docker build . --file Dockerfile --tag localbuild/testimage:latest
- name: Run the Anchore scan action itself with GitHub Advanced Security code scanning integration enabled
uses: anchore/scan-action@b08527d5ae7f7dc76f9621edb6e49eaf47933ccd
- name: Run the Anchore Grype scan action
uses: anchore/scan-action@d5aa5b6cb9414b0c7771438046ff5bcfa2854ed7
id: scan
with:
image: "localbuild/testimage:latest"
acs-report-enable: true
fail-build: false
- name: Upload Anchore Scan Report
fail-build: true
severity-cutoff: critical
- name: Upload vulnerability report
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: results.sarif
sarif_file: ${{ steps.scan.outputs.sarif }}
+1 -1
View File
@@ -37,7 +37,7 @@ jobs:
# node-version: "16.x"
- uses: jfrog/frogbot@34759934930c177bdefba6ca3a417589d4db6cab
- uses: jfrog/frogbot@9304d3b1d8e05a1b5fc0ba9ebf9ffbd495386250
env:
# [Mandatory]
# JFrog platform URL (This functionality requires version 3.29.0 or above of Xray)
+1 -1
View File
@@ -42,7 +42,7 @@ jobs:
# The full template list with the required GitHub Actions can be found at https://github.com/jfrog/frogbot/tree/master/templates/github-actions/scan-pull-request
- uses: jfrog/frogbot@34759934930c177bdefba6ca3a417589d4db6cab
- uses: jfrog/frogbot@9304d3b1d8e05a1b5fc0ba9ebf9ffbd495386250
env:
# [Mandatory]
# JFrog platform URL (This functionality requires version 3.29.0 or above of Xray)
+55
View File
@@ -0,0 +1,55 @@
# This workflow uses actions that are not certified by GitHub.
# They are provided by a third-party and are governed by
# separate terms of service, privacy policy, and support
# documentation.
#
# NowSecure: The Mobile Security Experts <https://www.nowsecure.com/>.
#
# To use this workflow, you must have a token for NowSecure Platform. If you are a NowSecure customer,
# you can find it in NowSecure Platform.
#
# If you *are not* a NowSecure customer, click here to sign up for a free trial to get access:
# <https://bit.ly/ns-git-sbom>.
#
# Instructions:
#
# 1. In the settings for your repository, click "Secrets" then "New repository secret". Name the secret "NS_TOKEN" and
# paste in your Platform token. If you do not have a Platform token, or wish to create a new one for GitHub, visit
# NowSecure Platform and go to "Profile & Preferences" then create a token labelled "GitHub".
#
# 2. Follow the annotated workflow below and make any necessary modifications then save the workflow to your repository
# and review the "Dependency graph" tab in the "Insights" pane once the action has run.
name: "NowSecure Mobile SBOM"
on:
push:
branches: [ $default-branch, $protected-branches ]
pull_request:
# The branches below must be a subset of the branches above
branches: [ $default-branch ]
schedule:
- cron: $cron-weekly
permissions:
contents: read
jobs:
nowsecure:
name: NowSecure Mobile SBOM
runs-on: ubuntu-latest
permissions:
contents: read
steps:
- name: Checkout code
uses: actions/checkout@v3
- name: Build your application
run: ./gradlew assembleDebug # Update this to build your Android or iOS application
- name: NowSecure upload app
uses: nowsecure/nowsecure-sbom-action@ecb731b6f17a83fa53f756f9dae2ec7034c5ed7c
with:
token: ${{ secrets.NS_TOKEN }}
app_file: app-debug.apk # Update this to a path to your .ipa or .apk
group_id: {{ groupId }} # Update this to your desired Platform group ID
@@ -1,6 +1,6 @@
{
"name": "Anchore Syft SBOM Scan",
"organization": "Anchore",
"creator": "Anchore",
"description": "Produce Software Bills of Materials based on Anchore's open source Syft tool.",
"iconName": "anchore",
"categories": ["Code Scanning", "dockerfile", "dependency-management"]
@@ -1,7 +1,7 @@
{
"name": "Anchore Container Scan",
"creator": "Indeni Cloudrail",
"description": "Produce container image vulnerability and compliance reports based on the open-source Anchore container image scanner.",
"name": "Anchore Grype Vulnerability Scan",
"creator": "Anchore",
"description": "Produce source and container vulnerability reports based on Anchore's open source Grype tool.",
"iconName": "anchore",
"categories": ["Code Scanning", "dockerfile"]
}
}
@@ -1,6 +1,7 @@
{
"name": "CodeQL Analysis",
"creator": "GitHub",
"enterprise": true,
"description": "Security analysis from GitHub for C, C++, C#, Go, Java, JavaScript, TypeScript, Python, and Ruby developers.",
"iconName": "octicon mark-github",
"categories": ["Code Scanning", "C", "C++", "C#", "Go", "Java", "JavaScript", "TypeScript", "Python", "Ruby"]
@@ -2,10 +2,11 @@
"name": "ESLint",
"description": "A tool for identifying and reporting the problems found in ECMAScript/JavaScript code.",
"iconName": "eslint",
"enterprise": false,
"categories": [
"Code Scanning",
"JavaScript",
"EcmaScript",
"TypeScript"
]
}
}
@@ -0,0 +1,21 @@
{
"name": "NowSecure Mobile SBOM",
"creator": "NowSecure",
"description": "Generate a Mobile SBOM for an application and submit to Dependency Graph",
"iconName": "nowsecure",
"categories": [
"Code Scanning",
"Java",
"Kotlin",
"Scala",
"Swift",
"Objective C",
"C",
"C++",
"C#",
"Rust",
"JavaScript",
"TypeScript",
"Node"
]
}
@@ -0,0 +1,7 @@
{
"name": "Zscaler IaC Scan",
"creator": "Zscaler CWP",
"description": "Scan your Infrastructure as Code files using Zscaler Infrastructure as Code (IaC) Scan app",
"iconName": "zscaler",
"categories": ["Code Scanning"]
}
@@ -0,0 +1,14 @@
{
"name": "zScan",
"creator": "Zimperium",
"description": "The zimperium-zscan GitHub action scans your mobile app binary (iOS or Android) and identifies security, privacy, and compliance-related vulnerabilities. ",
"iconName": "zscan",
"categories": [
"Code Scanning",
"Java",
"Kotlin",
"Scala",
"Swift",
"Objective C"
]
}
+4 -4
View File
@@ -22,7 +22,7 @@ jobs:
# Needs for private repositories.
contents: read
actions: read
steps:
- name: "Checkout code"
uses: actions/checkout@a12a3943b4bdde767164f792f33f40b04645d846 # tag=v3.0.0
@@ -41,8 +41,8 @@ jobs:
# repo_token: ${{ secrets.SCORECARD_READ_TOKEN }}
# Publish the results for public repositories to enable scorecard badges. For more details, see
# https://github.com/ossf/scorecard-action#publishing-results.
# For private repositories, `publish_results` will automatically be set to `false`, regardless
# https://github.com/ossf/scorecard-action#publishing-results.
# For private repositories, `publish_results` will automatically be set to `false`, regardless
# of the value entered here.
publish_results: true
@@ -54,7 +54,7 @@ jobs:
name: SARIF file
path: results.sarif
retention-days: 5
# Upload the results to GitHub's code scanning dashboard.
- name: "Upload to code-scanning"
uses: github/codeql-action/upload-sarif@5f532563584d71fdef14ee64d17bafb34f751ce5 # tag=v1.0.26
+9 -4
View File
@@ -3,13 +3,18 @@
# separate terms of service, privacy policy, and support
# documentation.
#
# SOOS is the easy-to-integrate software security solution for your whole team, learn more at https://soos.io/
# SOOS is the easy-to-integrate and affordable software security solution for your whole team.
# Learn more at https://soos.io/
#
# To use this action you need to fill the following requirements:
# To use this action, perform the following steps:
#
# 1. Create an account on https://app.soos.io to obtain a Client ID and API Key (Free 30 days trials for both our SCA/DAST product).
# 1. Create an account on https://app.soos.io. SOOS offers a free 30 day trial for our SCA and DAST products.
#
# 2. Set up your API KEY/Client ID as Github Secrets named SOOS_CLIENT_ID & SOOS_API_KEY. (Also set SOOS_GITHUB_PAT with your Github Personal Access Token if you're going to use sarif upload)
# 2. Navigate to the "Integrate" page in the SOOS app (https://app.soos.io/integrate). Note the "API Credentials" section of this page; the keys you will need for the next step are here.
#
# 3. Set up your SOOS API Key and SOOS Client Id as Github Secrets named SOOS_API_KEY and SOOS_CLIENT_ID.
#
# 4. (Optional) If you'd like to upload SARIF results of DAST scans to GitHub, set SOOS_GITHUB_PAT with your Github Personal Access Token.
#
name: "SOOS DAST Scan"
+56
View File
@@ -0,0 +1,56 @@
#This workflow uses actions that are not certified by GitHub.
#They are provided by a third party and are governed by
#separate terms of service, privacy policy, and support
#documentation.
#This workflow runs the Zscaler Infrastructure as Code (IaC) Scan app,
#which detects security misconfigurations in IaC templates and publishes the findings
#under the code scanning alerts section within the repository.
#Log into the Zscaler Workload Posture (ZWP) Admin Portal to begin the onboarding process.
#Copy the client ID and client secret key generated during the onboarding process and configure.
#GitHub secrets (ZSCANNER_CLIENT_ID, ZSCANNER_CLIENT_SECRET).
#Refer https://github.com/marketplace/actions/zscaler-iac-scan for additional details on setting up this workflow.
#Any issues with this workflow, please raise it on https://github.com/ZscalerCWP/Zscaler-IaC-Action/issues for further investigation.
name: Zscaler IaC Scan
on:
push:
branches: [ $default-branch, $protected-branches ]
pull_request:
branches: [ $default-branch ]
schedule:
- cron: $cron-weekly
permissions:
contents: read
jobs:
zscaler-iac-scan:
permissions:
contents: read # for actions/checkout to fetch code
security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
runs-on: ubuntu-latest
steps:
- name : Code Checkout
uses: actions/checkout@v3
- name : Zscaler IAC Scan
uses : ZscalerCWP/Zscaler-IaC-Action@8f0d8b60bd5a8f44062d444463f66f419ab71cfc
id : zscaler-iac-scan
with:
client_id : ${{ secrets.ZSCANNER_CLIENT_ID }}
client_secret : ${{ secrets.ZSCANNER_CLIENT_SECRET }}
#This is the user region specified during the onboarding process within the ZWP Admin Portal.
region : 'US'
iac_dir : #Enter the IaC directory path from root.
iac_file : #Enter the IaC file path from root.
output_format : #(Optional) By default, the output is provided in a human readable format. However, if you require a different format, you can specify it here.
#To fail the build based on policy violations identified in the IaC templates, set the input value (fail_build) to true.
fail_build : #Enter true/false
#Ensure that the following step is included in order to post the scan results under the code scanning alerts section within the repository.
- name: Upload SARIF file
if: ${{ success() || failure() && (steps.zscaler-iac-scan.outputs.sarif_file_path != '') }}
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: ${{ steps.zscaler-iac-scan.sarif_file_path }}
+61
View File
@@ -0,0 +1,61 @@
# This workflow uses actions that are not certified by GitHub.
# They are provided by a third-party and are governed by
# separate terms of service, privacy policy, and support
# documentation.
#
# The zimperium-zscan GitHub action scans your mobile app binary (iOS or Android)
# and identifies security, privacy, and compliance-related vulnerabilities.
#
# Prerequisites:
# * An active Zimperium zScan account is required. If you are not an existing Zimperium
# zScan customer, please request a zSCAN demo by visiting https://www.zimperium.com/contact-us.
# * Either GitHub Advanced Security (GHAS) or a public repository is required to display
# issues and view the remediation information inside of GitHub code scanning alerts.
#
# For additional information and setup instructions
# please visit: https://github.com/Zimperium/zScanMarketplace#readme
name: "Zimperium zScan"
on:
push:
branches: [ $default-branch, $protected-branches ]
pull_request:
branches: [ $default-branch ]
permissions:
contents: read
jobs:
zscan:
name: zScan
runs-on: ubuntu-latest
permissions:
contents: read # for actions/checkout to fetch code
security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
steps:
- name: Checkout repository
uses: actions/checkout@v3
- name: Execute gradle build
run: ./gradlew build # Change this to build your mobile application
- name: Run Zimperium zScan
uses: zimperium/zscanmarketplace@bfc6670f6648d796098c251ccefcfdb98983174d
timeout-minutes: 60
with:
# REPLACE: Zimperium Client Environment Name
client_env: env_string
# REPLACE: Zimperium Client ID
client_id: id_string
# REPLACE: Zimperium Client Secret
client_secret: ${{ secrets.ZSCAN_CLIENT_SECRET }}
# REPLACE: The path to an .ipa or .apk
app_file: app-release-unsigned.apk
- name: Upload SARIF file
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: Zimperium.sarif
+3
View File
@@ -0,0 +1,3 @@
<svg width="250" height="52" viewBox="0 0 250 52" fill="none" xmlns="http://www.w3.org/2000/svg">
<path d="M83.3617 26.2877C84.7182 34.5501 77.5226 39.2067 70.2361 39.7434C65.5982 49.2532 49.2595 55.6749 35.0768 48.758C29.0142 49.6727 25.6911 48.1608 23.1259 45.2769C28.3094 38.6246 44.0002 26.6505 63.1694 32.8303C73.4 36.13 76.0524 28.3778 73.4872 25.4712C63.8325 14.5328 42.0374 24.3789 41.2493 25.1991C49.8127 12.1327 80.4402 8.46634 83.3617 26.2877ZM54.0073 11.2709C54.0603 11.252 47.0466 8.78383 37.2366 13.0095C36.8417 12.8634 36.4546 12.6969 36.0771 12.5106C45.512 6.25899 53.7837 3.60563 60.8542 4.63749C56.5725 -0.279907 35.9975 -3.89331 24.2095 7.88804C9.63655 5.0268 -0.556211 17.3449 0.0235256 28.5933C0.603262 39.8417 12.9066 46.8455 19.9165 44.9481C20.0849 44.9254 20.2557 44.9254 20.4242 44.9481C21.9777 37.5134 28.3207 20.2175 54.0073 11.2709ZM112.693 21.5441L114.001 15.8141H92.0539L91.5575 18.0328C90.9854 19.9944 92.5389 21.3854 94.2099 21.34H104.376L86.3551 37.2148L85.1387 42.5404H108.385L109.723 36.7083H95.0208L112.693 21.5441ZM127.334 26.1629C126.304 25.9021 120.533 25.029 120.893 23.0485C121.298 20.8146 124.034 20.603 125.364 20.6446C128.104 20.7239 128.968 21.9259 129.112 22.3492C129.491 23.4831 130.366 24.0539 131.647 24.0539H135.974C136.447 21.3816 136.576 15.2169 126.524 15.2169C123.295 15.2169 118.995 16.0258 116.149 19.2952C114.633 21.049 112 25.4032 114.686 28.6764C116.092 30.3282 119.756 31.6208 123.689 32.3881C126.232 32.887 127.577 33.9 127.297 35.0982C127.126 35.9032 126.114 37.7175 122.371 37.7137C120.696 37.7137 117.066 37.4491 117.759 33.6959H110.916C110.113 37.0976 109.817 43.0356 120.253 43.0356C124.277 43.0356 132.469 42.5253 134.602 33.9907C136.14 27.86 129.21 26.6467 127.334 26.1743V26.1629ZM151.524 35.6122C150.934 36.1561 150.242 36.5784 149.488 36.8547C148.733 37.131 147.932 37.256 147.129 37.2224C141.961 37.2715 142.544 32.1689 143.249 29.0884C143.954 26.008 145.617 21.0452 150.532 21.0565C154.014 21.0565 154.415 23.3055 154.594 23.9669H161.637C161.387 16.5511 155.689 15.1337 151.661 15.232C140.619 15.5042 137.425 24.7115 136.436 28.9902C133.552 41.4897 141.566 43.0507 145.401 43.0507C148.546 43.0507 155.431 42.2947 159.474 34.312H154.446C152.994 34.2591 152.324 34.9016 151.524 35.6084V35.6122ZM180.288 38.1748C178.256 40.5655 175.433 42.1506 172.33 42.6425C166.211 43.6516 157.799 43.3984 159.917 34.6106C160.595 31.806 161.645 29.9691 163.756 28.5857C167.291 26.2688 171.986 25.9399 173.509 25.7736C174.028 25.7169 177.878 25.4297 178.537 23.1581C179.181 20.9469 175.65 20.7655 174.661 20.7542C171.629 20.7202 170.603 21.9259 170.114 22.644H163.369C166.094 15.4928 173.6 15.2131 175.646 15.2131C177.919 15.2131 187.036 15.2131 185.297 22.7499C182.637 34.2628 182.523 35.4119 180.288 38.1748ZM177.256 29.1035C176.173 29.697 173.467 30.279 173.035 30.4038C171.648 30.812 168.996 30.9934 167.708 32.1954C166.605 33.2348 164.657 37.5285 169.284 37.6192C172.149 37.6721 175.725 36.0658 176.741 31.4016C176.953 30.3471 177.271 29.1035 177.271 29.1035H177.256ZM194.61 8.00143H190.973L183.069 42.5442H190.113L197.255 11.3162C197.566 10.3335 197.365 8.09593 194.61 8.00143ZM212.87 34.3082H217.906C216.322 37.4983 212.222 43.0507 203.826 43.0469C193.11 43.0469 193.769 33.5107 194.864 28.9864C197.896 16.4151 206.334 15.2282 210.093 15.2282C215.102 15.2282 222.949 17.2995 218.963 30.9934H201.533C201.109 32.8077 200.745 37.2715 205.55 37.2186C208.077 37.1921 209.024 36.2812 209.252 36.164C209.919 35.8314 210.525 34.3498 212.87 34.3082ZM202.583 26.4767H212.848C213.727 21.563 210.676 21.0528 208.956 21.0528C207.482 21.0528 203.973 21.5857 202.583 26.4767ZM227.97 18.7434C223.253 21.9523 221.691 27.1154 221.15 29.5911C220.718 31.5415 218.183 42.5442 218.183 42.5442H225.234C225.234 42.5442 227.906 30.4491 228.375 28.7898C228.932 26.8508 230.747 21.6084 237.772 21.8238L239.402 15.8254C233.718 15.644 229.967 17.3865 227.966 18.7434H227.97ZM240.27 10.617L240.448 9.7779H244.237L244.055 10.617H242.695L241.937 14.3135H240.914L241.69 10.617H240.27ZM246.506 9.7779L246.855 13.0625L248.606 9.7779H250L249.038 14.3135H248.113L248.947 10.7039L247.022 14.3135H246.264L245.824 10.7039L245.146 14.3135H244.203L245.157 9.7779H246.506Z" fill="#236BF5"/>
</svg>

After

Width:  |  Height:  |  Size: 4.1 KiB

+11
View File
@@ -0,0 +1,11 @@
<?xml version="1.0" encoding="UTF-8" ?>
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
<svg width="900pt" height="750pt" viewBox="0 0 900 750" version="1.1" xmlns="http://www.w3.org/2000/svg">
<g id="#63788eff">
<path fill="#63788e" opacity="1.00" d=" M 169.76 58.08 C 248.92 45.26 328.85 36.97 408.99 34.00 C 434.66 34.01 460.32 33.98 485.98 34.01 C 566.09 36.97 645.97 45.22 725.07 58.14 C 773.12 123.20 820.59 188.70 868.62 253.78 C 857.86 253.89 847.46 250.91 836.96 248.98 C 699.42 221.76 559.34 204.66 418.96 206.84 C 416.92 207.01 414.93 207.43 412.94 207.86 C 389.26 208.73 365.56 209.50 341.91 211.16 C 286.53 214.80 231.34 221.09 176.45 229.24 C 125.58 236.94 74.79 245.53 24.64 257.10 C 25.55 254.66 27.15 252.60 28.71 250.54 C 75.59 186.29 122.48 122.04 169.76 58.08 Z" />
<path fill="#63788e" opacity="1.00" d=" M 428.98 510.59 C 522.23 511.26 615.32 501.64 707.12 485.63 C 622.30 560.00 537.49 634.39 452.56 708.65 C 450.19 710.68 448.64 713.49 446.12 715.36 C 441.25 709.40 435.10 704.72 429.35 699.67 C 349.99 630.09 270.59 560.55 191.23 490.97 C 198.21 487.63 205.87 489.81 213.04 491.12 C 273.93 500.89 335.34 507.54 396.96 510.28 C 407.63 510.63 418.31 511.53 428.98 510.59 Z" />
</g>
<g id="#4b596bff">
<path fill="#4b596b" opacity="1.00" d=" M 412.94 207.86 C 414.93 207.43 416.92 207.01 418.96 206.84 C 559.34 204.66 699.42 221.76 836.96 248.98 C 847.46 250.91 857.86 253.89 868.62 253.78 C 869.28 254.66 869.96 255.54 870.64 256.43 C 797.25 290.57 724.44 326.00 652.91 363.93 C 616.99 383.02 581.36 402.69 546.42 423.53 C 504.39 448.39 465.24 477.93 428.98 510.59 C 418.31 511.53 407.63 510.63 396.96 510.28 C 335.34 507.54 273.93 500.89 213.04 491.12 C 205.87 489.81 198.21 487.63 191.23 490.97 C 189.47 489.44 187.72 487.92 185.95 486.42 C 235.44 401.48 297.86 324.65 366.59 254.58 C 381.76 238.73 397.58 223.52 412.94 207.86 Z" />
</g>
</svg>

After

Width:  |  Height:  |  Size: 1.9 KiB

+1 -1
View File
@@ -61,7 +61,7 @@ async function checkWorkflows(
const enabled =
!isPartnerWorkflow &&
workflowProperties.enterprise !== false &&
(workflowProperties.enterprise === true || folder !== 'code-scanning') &&
(await checkWorkflow(workflowFilePath, enabledActions));
const workflowDesc: WorkflowDesc = {
+57 -7
View File
@@ -9,7 +9,7 @@
"version": "1.0.0",
"license": "MIT",
"dependencies": {
"@actions/core": "^1.2.6",
"@actions/core": "^1.9.1",
"js-yaml": "^3.13.1",
"jsonschema": "^1.2.6"
},
@@ -21,9 +21,21 @@
}
},
"node_modules/@actions/core": {
"version": "1.2.6",
"resolved": "https://registry.npmjs.org/@actions/core/-/core-1.2.6.tgz",
"integrity": "sha512-ZQYitnqiyBc3D+k7LsgSBmMDVkOVidaagDG7j3fOym77jNunWRuYx7VSHa9GNfFZh+zh61xsCjRj4JxMZlDqTA=="
"version": "1.9.1",
"resolved": "https://registry.npmjs.org/@actions/core/-/core-1.9.1.tgz",
"integrity": "sha512-5ad+U2YGrmmiw6du20AQW5XuWo7UKN2052FjSV7MX+Wfjf8sCqcsZe62NfgHys4QI4/Y+vQvLKYL8jWtA1ZBTA==",
"dependencies": {
"@actions/http-client": "^2.0.1",
"uuid": "^8.3.2"
}
},
"node_modules/@actions/http-client": {
"version": "2.0.1",
"resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-2.0.1.tgz",
"integrity": "sha512-PIXiMVtz6VvyaRsGY268qvj57hXQEpsYogYOu2nrQhlf+XCGmZstmuZBbAybUl1nQGnvS1k1eEsQ69ZoD7xlSw==",
"dependencies": {
"tunnel": "^0.0.6"
}
},
"node_modules/@types/js-yaml": {
"version": "3.12.4",
@@ -153,6 +165,14 @@
"typescript": ">=2.7"
}
},
"node_modules/tunnel": {
"version": "0.0.6",
"resolved": "https://registry.npmjs.org/tunnel/-/tunnel-0.0.6.tgz",
"integrity": "sha512-1h/Lnq9yajKY2PEbBadPXj3VxsDDu844OnaAo52UVmIzIvwwtBPIuNvkjuzBlTWpfJyUbG3ez0KSBibQkj4ojg==",
"engines": {
"node": ">=0.6.11 <=0.7.0 || >=0.7.3"
}
},
"node_modules/typescript": {
"version": "3.9.2",
"resolved": "https://registry.npmjs.org/typescript/-/typescript-3.9.2.tgz",
@@ -166,6 +186,14 @@
"node": ">=4.2.0"
}
},
"node_modules/uuid": {
"version": "8.3.2",
"resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz",
"integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==",
"bin": {
"uuid": "dist/bin/uuid"
}
},
"node_modules/yn": {
"version": "3.1.1",
"resolved": "https://registry.npmjs.org/yn/-/yn-3.1.1.tgz",
@@ -178,9 +206,21 @@
},
"dependencies": {
"@actions/core": {
"version": "1.2.6",
"resolved": "https://registry.npmjs.org/@actions/core/-/core-1.2.6.tgz",
"integrity": "sha512-ZQYitnqiyBc3D+k7LsgSBmMDVkOVidaagDG7j3fOym77jNunWRuYx7VSHa9GNfFZh+zh61xsCjRj4JxMZlDqTA=="
"version": "1.9.1",
"resolved": "https://registry.npmjs.org/@actions/core/-/core-1.9.1.tgz",
"integrity": "sha512-5ad+U2YGrmmiw6du20AQW5XuWo7UKN2052FjSV7MX+Wfjf8sCqcsZe62NfgHys4QI4/Y+vQvLKYL8jWtA1ZBTA==",
"requires": {
"@actions/http-client": "^2.0.1",
"uuid": "^8.3.2"
}
},
"@actions/http-client": {
"version": "2.0.1",
"resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-2.0.1.tgz",
"integrity": "sha512-PIXiMVtz6VvyaRsGY268qvj57hXQEpsYogYOu2nrQhlf+XCGmZstmuZBbAybUl1nQGnvS1k1eEsQ69ZoD7xlSw==",
"requires": {
"tunnel": "^0.0.6"
}
},
"@types/js-yaml": {
"version": "3.12.4",
@@ -279,12 +319,22 @@
"yn": "3.1.1"
}
},
"tunnel": {
"version": "0.0.6",
"resolved": "https://registry.npmjs.org/tunnel/-/tunnel-0.0.6.tgz",
"integrity": "sha512-1h/Lnq9yajKY2PEbBadPXj3VxsDDu844OnaAo52UVmIzIvwwtBPIuNvkjuzBlTWpfJyUbG3ez0KSBibQkj4ojg=="
},
"typescript": {
"version": "3.9.2",
"resolved": "https://registry.npmjs.org/typescript/-/typescript-3.9.2.tgz",
"integrity": "sha512-q2ktq4n/uLuNNShyayit+DTobV2ApPEo/6so68JaD5ojvc/6GClBipedB9zNWYxRSAlZXAe405Rlijzl6qDiSw==",
"dev": true
},
"uuid": {
"version": "8.3.2",
"resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz",
"integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg=="
},
"yn": {
"version": "3.1.1",
"resolved": "https://registry.npmjs.org/yn/-/yn-3.1.1.tgz",
+1 -1
View File
@@ -14,7 +14,7 @@
"typescript": "^3.9.2"
},
"dependencies": {
"@actions/core": "^1.2.6",
"@actions/core": "^1.9.1",
"js-yaml": "^3.13.1",
"jsonschema": "^1.2.6"
}