Commit Graph

2407 Commits

Author SHA1 Message Date
Beth Brennan 58e7cd05f5 Merge pull request #2900 from actions/nebuk89-patch-1 2025-06-06 07:37:31 -04:00
Ben De St Paer-Gotch 84e227a101 Update README.md 2025-06-06 11:45:43 +01:00
Anthony Zavala 43366bbd11 Merge pull request #2851 from sgoedecke/patch-1
Remove preview label from summary.properties.json
2025-04-24 08:59:56 -07:00
Sean Goedecke 736803bd21 Remove preview label from summary.properties.json 2025-04-24 10:30:31 +10:00
Anthony Zavala e101f44360 Merge pull request #2847 from sgoedecke/sgoedecke/add-new-preview-workflow
Add summary preview workflow
2025-04-23 07:58:07 -07:00
Sean Goedecke 5e895b8422 Merge branch 'main' into sgoedecke/add-new-preview-workflow 2025-04-23 11:22:24 +10:00
Sean Goedecke 17b8575ef8 Use latest version of checkout, add permission for checkout, and use RESPONSE variable 2025-04-22 21:41:43 +00:00
Sean Goedecke f1f24bdbc6 Remove newline 2025-04-22 06:22:40 +00:00
Sean Goedecke f0c24a6951 Sentence case step names 2025-04-22 06:21:00 +00:00
Sean Goedecke a041377b16 Add summary preview workflow 2025-04-22 06:16:47 +00:00
Anthony Zavala 9c3c789909 Merge pull request #2369 from actions/dependabot/github_actions/actions/cache-4
Bump actions/cache from 3 to 4
2025-04-21 17:18:56 -07:00
Anthony Zavala bd28c76fa9 Merge branch 'main' into dependabot/github_actions/actions/cache-4 2025-04-21 17:17:28 -07:00
Konrad Pabjan 85c6b7a620 Merge pull request #2786 from spencerschrock/scorecard-bug-fix
fix: Scorecard artifact upload and version bump
2025-03-25 16:53:12 -04:00
Konrad Pabjan 0d93bc2a4f Merge branch 'main' into scorecard-bug-fix 2025-03-25 16:52:46 -04:00
Yang Cao 17ba94afa4 Merge pull request #2588 from fortify/fortify-20241106
Update Fortify starter workflow
2025-03-24 14:05:43 -07:00
Ruud Senden 7525cf0deb Merge branch 'main' into fortify-20241106 2025-03-17 22:58:26 +01:00
Ruud Senden dd84e34b8d Update to latest published action version 2025-03-17 22:57:43 +01:00
Marco Gario a413869948 Merge pull request #2759 from felickz/patch-5
Code Scanning: bandit to latest hash
2025-03-05 14:09:23 +01:00
Chad Bentz c95135c3f9 Merge branch 'main' into patch-5 2025-03-05 01:28:16 -05:00
Spencer Schrock 4a5b4939a6 add future looking pull_request event to conditional
Scorecard currently has experimental support for the `pull_request`
trigger, so we want to allow analysis to be run for it in the future.

Signed-off-by: Spencer Schrock <sschrock@google.com>
2025-02-24 11:32:33 -07:00
Josh Soref 41e00af395 Limit scorecard to default branch
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
2025-02-24 11:32:28 -07:00
Spencer Schrock f70f9c8252 bump action versions to latest to resolve issues
1. Scorecard update v2.4.1 was released, which includes months of bug
   fixes and a new `file_mode` input to address a .gitattributes bug.
2. Bumped actions/upload-artifact to the v4 branch. This was previously
   kept at  v3 as GHES doesn't support v4, but github.com no longer
   supports v3: as uploads return the following error "Create Artifact
   Container failed: The artifact name JSON file is not valid."

  Signed-off-by: Spencer Schrock <sschrock@google.com>
2025-02-24 11:27:23 -07:00
AlexDeMichieli a00915e13e Merge pull request #2676 from blackduck-inc/main
Merging black-duck-security-scan template
2025-02-10 12:40:24 -08:00
Sadman Anik fcdc1287fc Fixed Linting Issues 2025-02-10 11:43:15 +06:00
Sadman Anik 345594d7f5 Updated actions/checkout v3 to v4 2025-02-07 14:47:21 +06:00
Sadman Anik 5969febe64 Resolved reviwed comments 2025-02-05 13:47:33 +06:00
Sadman Anik 51a27e7024 Merge branch 'main' into main 2025-02-04 16:17:52 +06:00
Chad Bentz 7db00754dc Code Scanning: bandit to latest hash
ab1d87dfccc5a0ffab88be3aaac6ffe35c10d6cd
2025-02-03 15:12:05 -05:00
Orhan Toy 55eb18560f Merge pull request #2748 from aeisenberg/patch-3
Add comments to codeql.yml
2025-02-03 13:22:17 +01:00
Andrew Eisenberg adcb922ec2 Make the example setup more explicit. 2025-01-30 16:50:30 -08:00
Sadman Anik 1de3a149b3 Update black-duck-security-scan-ci.yml 2025-01-30 13:48:02 +06:00
Andrew Eisenberg 7398b4eca4 Remove trailing whitespace 2025-01-29 15:39:32 -08:00
Andrew Eisenberg 2abfcee18d Update codeql.yml
Explicitly suggest that users add their setup steps before calling init.
2025-01-29 14:23:54 -08:00
Sadman Anik 56844b15c7 Merge branch 'main' into main 2025-01-28 12:45:05 +06:00
SOOS-GSteen 9085976703 SOOS Dast Feature Update (#2733)
* Update soos-dast-scan.yml

* Update soos-dast-scan.yml

* Update soos-dast-scan.yml
2025-01-23 18:15:51 -06:00
Josh Gross 1e05f3c86d Update starter workflows to use the latest artifact actions (#2726)
* Update starter workflows to use the latest artifact actions

* Ensure incompatible artifact actions aren't synced to GHES
2025-01-21 15:06:02 -05:00
Beth Brennan f480e98459 Merge pull request #2465 from jsoref/bump-actions
Checkout: Update all workflows to use Checkout V4
2025-01-14 13:59:44 -05:00
Beth Brennan 3cd0650576 Merge branch 'main' into bump-actions 2025-01-14 13:13:27 -05:00
Josh Soref 95a3224907 Remove stray -
Co-authored-by: Beth Brennan <34719884+elbrenn@users.noreply.github.com>
2025-01-13 20:52:25 -05:00
Fabian Aguilar Gomez b001911fc6 Merge pull request #2720 from actions/update-ruby
Update jekyll.yml
2025-01-13 15:05:21 -06:00
Fabian Aguilar Gomez f8ea592ee6 Update jekyll.yml 2025-01-13 14:54:01 -06:00
Beth Brennan f4f8d50fb6 Merge pull request #2711 from jsoref/fix-octopus-deploy
Fix octopus deploy
2025-01-13 12:59:45 -05:00
Beth Brennan 016b90714a Merge branch 'main' into fix-octopus-deploy 2025-01-13 12:56:22 -05:00
Beth Brennan a38d8caf42 Merge pull request #2464 from jsoref/ubuntu-latest
Ubuntu-Latest: Update all workflows to use ubuntu-latest
2025-01-13 12:54:55 -05:00
Beth Brennan e1deb63e94 Merge branch 'main' into ubuntu-latest 2025-01-13 12:52:40 -05:00
Josh Soref be1cddbe1d Checkout: Update all workflows to use Checkout V4 2025-01-06 09:43:57 -05:00
Josh Soref d9c5f62b74 Fix sentence style
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
2025-01-06 09:25:40 -05:00
Josh Soref 17f0d2485e Use unix line endings
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
2025-01-06 09:25:36 -05:00
Josh Soref 9351ace4ef Remove trailing whitespace
> trim trailing whitespace.................................................Failed
> - hook id: trailing-whitespace
> - exit code: 1
> - files were modified by this hook
>
> Fixing deployments/octopusdeploy.yml

Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
2025-01-06 09:25:31 -05:00
Sadman Anik 9e76f8420e Merge pull request #2 from blackduck-inc/blackducksecurityscan-template
Used hash instead of tag name
2024-12-23 16:50:51 +06:00