Commit Graph
446 Commits
Author SHA1 Message Date
Simon Engledew 23737db306 Make enterprise opt-in instead of opt-out 2022-09-21 15:45:41 +01:00
Simon EngledewandGitHub 6b52b98767 Hide ESLint on GHES 2022-09-21 12:46:14 +01:00
omerzi e7e1dc2037 Update Frogbot's version 2022-09-20 16:36:24 +03:00
Sampark SharmaandGitHub 67e9e6e817 Merge branch 'main' into codeql-category 2022-09-16 15:33:47 +05:30
Sampark SharmaandGitHub a2618651d7 Merge branch 'main' into patch-1 2022-09-16 14:55:33 +05:30
Marco GarioandGitHub cb341b59ed Update CodeQL to include category by default
Code Scanning can accept multiple uploads for the same tool and uses the concept of category to keep results separated.
If not provided explicitly, the category is computed based on a few parameters like workflow path and matrix variables. The implicit computation of the category can create confusion if users change their workflow, as we start considering the new analyses as unrelated to existing results.

By making the category explicit in the workflow we hope to make the concept more prominent and reduce accidental changes.
2022-09-16 09:25:07 +02:00
Chad Bentz 568b096f39 add actions: read to any job using upload-sarif 2022-09-14 18:17:28 -04:00
Azeem ShaikhandGitHub 81fe53796f Update to scorecard-action:v2.0.3
Includes bug fixes
2022-09-14 09:37:06 -04:00
A-Katopodis cf9b684433 Updated powershell to v1.1 commit 2022-09-13 13:14:35 -05:00
Eric Allard 2426779103 Updated old instructions to add more detail 2022-09-09 15:00:01 -04:00
Jeevan Reddy RagulaandGitHub f3d8f1331d Merge branch 'main' into main 2022-09-09 11:26:55 +05:30
naveensrinivasan 2333616c7d Upgraded scorecard action to v2.0.0
- Upgraded scorecard action to v2.0.0
https://github.com/ossf/scorecard-action/commit/13ec8c77e8a5dae7e0a0d47bde3e3004df15d34f

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-09-08 09:37:44 -05:00
ShaopengandGitHub f187f4a712 Merge branch 'main' into users/shaopeng-gh/lintr 2022-09-06 04:32:06 -07:00
Sampark SharmaandGitHub 2184ca2468 Merge branch 'main' into main 2022-09-06 16:19:26 +05:30
Omer ZidkoniandGitHub 7744fcb103 Merge branch 'main' into main 2022-09-06 09:28:31 +03:00
abdul-hai-apisecandGitHub 44f6e35784 Merge branch 'main' into master 2022-09-05 11:09:02 +05:30
Sampark SharmaandGitHub 3e8e8ddac6 Merge branch 'main' into setup-ruby-latest 2022-09-01 17:05:15 +05:30
abdul-hai-apisec d14e8af6e3 Added EthicalCheck Action 2022-08-30 21:45:04 +05:30
Austen Stone a4af1b700b branches 2022-08-30 10:13:31 -04:00
Jeevan Reddy RagulaandGitHub 5cb80783ab Merge branch 'main' into main 2022-08-30 18:01:42 +05:30
omerzi 2f880ea2a2 Update Frogbot permissions and Tag 2022-08-28 16:07:58 +03:00
James M. Greene 9d734850ef Update all usages of ruby/setup-ruby to latest 2022-08-25 23:42:31 -05:00
laurentsimonandGitHub a640bca95a Merge branch 'main' into patch-3 2022-08-24 09:22:57 -07:00
Omer ZidkoniandGitHub bb6277cf2a Update frogbot-scan-pr.properties.json 2022-08-24 15:42:10 +03:00
Omer ZidkoniandGitHub cdcdda3a89 Update frogbot-scan-and-fix.properties.json 2022-08-24 15:41:50 +03:00
Omer ZidkoniandGitHub 5fd9f56689 Update frogbot-scan-pr.yml 2022-08-23 16:56:36 +03:00
Omer ZidkoniandGitHub 77485a55d0 Update frogbot-scan-and-fix.yml 2022-08-23 16:56:22 +03:00
Omer ZidkoniandGitHub c61f33a701 Merge branch 'main' into main 2022-08-23 11:21:25 +03:00
Omer ZidkoniandGitHub f4c529ed9f Update frogbot-scan-and-fix.yml 2022-08-23 11:17:52 +03:00
Omer ZidkoniandGitHub 27a76bc269 Update frogbot-scan-pr.yml 2022-08-23 11:17:35 +03:00
laurentsimonandGitHub 5ab15a7349 Update scorecards.yml 2022-08-22 12:13:18 -07:00
omerzi 4d18310e04 added read permissions for private repos 2022-08-17 15:29:22 +03:00
Sampark SharmaandGitHub 571a01b0f9 Merge branch 'main' into patch-1 2022-08-17 17:01:05 +05:30
omerzi a82c7d200a Code review changes 2022-08-17 09:41:13 +03:00
Keith Zantow 65d796c94f Add Anchore Syft SBOM scan workflow 2022-08-16 12:47:02 -04:00
Dylan RinkerandGitHub b206471e4d Update clj-holes.yml
- Fixed a typo in the upload-sarif@v1 action 
- Commented out the rules-repository. The template will now default to rules in git://clj-holmes/clj-holmes-rules#main, but the format is preserved.
2022-08-16 09:24:41 -04:00
omerzi e35bb09c20 Code review changes 2022-08-07 09:32:25 +03:00
omerzi 8d20e65309 Adding JFrog Frogbot to GitHub starter workflows 2022-07-26 10:56:16 +03:00
omerzi 157a5156d8 Adding JFrog Frogbot to GitHub starter workflows 2022-07-26 10:54:41 +03:00
Federico Builes 948fdf226a Update the sample version of the Dependency Review action. 2022-06-28 17:20:56 +02:00
Jeevan Reddy RagulaandGitHub f2f7dfc0e6 Merge branch 'main' into main 2022-06-28 11:50:22 +05:30
Shaopeng Li 658980f080 Add lintr starter workflow 2022-06-27 20:51:38 -07:00
divyansh42 beafd2dec2 Add CRDA starter workflow and modify openshift workflow
Signed-off-by: divyansh42 <diagrawa@redhat.com>
2022-06-24 16:25:53 +05:30
Sampark SharmaandGitHub 1a3f256934 Merge branch 'main' into patch-1 2022-06-23 16:23:28 +05:30
Teppei FukudaandGitHub b2d74e9093 Update trivy-action to fix the performance issue
This version of trivy-action fixed an issue reported by GitHub. The detail is in https://github.com/aquasecurity/trivy/issues/2357.
2022-06-23 08:36:06 +03:00
Shaopeng Li bbd824dff4 use hash 2022-06-22 17:58:09 -07:00
Shaopeng Li be331aaa2f Add puppet-lint starter workflow 2022-06-22 17:54:14 -07:00
Austen StoneandGitHub c91d79cf30 Update tfsec.yml (#1616) 2022-06-22 17:10:07 +05:30
Noah Irwin 11f6dcf7a3 Merge branch 'main' of https://github.com/actions/starter-workflows 2022-06-20 13:03:41 +01:00
Noah Irwin 3a8411e0fd Add workflow permissions 2022-06-20 11:44:08 +01:00