Jeevan Reddy Ragula
e2ea54e6b2
Merge branch 'main' into main
2022-09-27 11:16:38 +05:30
Jeevan Reddy Ragula
6cf9b88b40
Merge branch 'main' into main
2022-09-27 10:00:13 +05:30
Keith Zantow
022ac9babb
Update Anchore Grype scan action workflow
2022-09-26 10:33:41 -04:00
Sampark Sharma
ff1e785cc6
Merge branch 'main' into patch-1
2022-09-26 12:17:07 +05:30
Gabriela Gutierrez
aa0375afbf
Remove trailing whitespaces
2022-09-23 18:04:56 -03:00
Eric Allard
4ea828e600
Merge branch 'main' into soos-dast-instructions-update
2022-09-23 10:12:44 -04:00
Isa Vilacides
fcb996aeb2
Merge branch 'main' into simon-engledew/flip-workflow-check
2022-09-21 16:53:14 +02:00
Simon Engledew
23737db306
Make enterprise opt-in instead of opt-out
2022-09-21 15:45:41 +01:00
Simon Engledew
6b52b98767
Hide ESLint on GHES
2022-09-21 12:46:14 +01:00
omerzi
e7e1dc2037
Update Frogbot's version
2022-09-20 16:36:24 +03:00
Sampark Sharma
67e9e6e817
Merge branch 'main' into codeql-category
2022-09-16 15:33:47 +05:30
Sampark Sharma
a2618651d7
Merge branch 'main' into patch-1
2022-09-16 14:55:33 +05:30
Marco Gario
cb341b59ed
Update CodeQL to include category by default
...
Code Scanning can accept multiple uploads for the same tool and uses the concept of category to keep results separated.
If not provided explicitly, the category is computed based on a few parameters like workflow path and matrix variables. The implicit computation of the category can create confusion if users change their workflow, as we start considering the new analyses as unrelated to existing results.
By making the category explicit in the workflow we hope to make the concept more prominent and reduce accidental changes.
2022-09-16 09:25:07 +02:00
Chad Bentz
568b096f39
add actions: read to any job using upload-sarif
2022-09-14 18:17:28 -04:00
Azeem Shaikh
81fe53796f
Update to scorecard-action:v2.0.3
...
Includes bug fixes
2022-09-14 09:37:06 -04:00
A-Katopodis
cf9b684433
Updated powershell to v1.1 commit
2022-09-13 13:14:35 -05:00
Eric Allard
2426779103
Updated old instructions to add more detail
2022-09-09 15:00:01 -04:00
Jeevan Reddy Ragula
f3d8f1331d
Merge branch 'main' into main
2022-09-09 11:26:55 +05:30
naveensrinivasan
2333616c7d
Upgraded scorecard action to v2.0.0
...
- Upgraded scorecard action to v2.0.0
https://github.com/ossf/scorecard-action/commit/13ec8c77e8a5dae7e0a0d47bde3e3004df15d34f
Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com >
2022-09-08 09:37:44 -05:00
Shaopeng
f187f4a712
Merge branch 'main' into users/shaopeng-gh/lintr
2022-09-06 04:32:06 -07:00
Sampark Sharma
2184ca2468
Merge branch 'main' into main
2022-09-06 16:19:26 +05:30
Omer Zidkoni
7744fcb103
Merge branch 'main' into main
2022-09-06 09:28:31 +03:00
Sampark Sharma
3e8e8ddac6
Merge branch 'main' into setup-ruby-latest
2022-09-01 17:05:15 +05:30
Austen Stone
a4af1b700b
branches
2022-08-30 10:13:31 -04:00
Jeevan Reddy Ragula
5cb80783ab
Merge branch 'main' into main
2022-08-30 18:01:42 +05:30
omerzi
2f880ea2a2
Update Frogbot permissions and Tag
2022-08-28 16:07:58 +03:00
James M. Greene
9d734850ef
Update all usages of ruby/setup-ruby to latest
2022-08-25 23:42:31 -05:00
laurentsimon
a640bca95a
Merge branch 'main' into patch-3
2022-08-24 09:22:57 -07:00
Omer Zidkoni
bb6277cf2a
Update frogbot-scan-pr.properties.json
2022-08-24 15:42:10 +03:00
Omer Zidkoni
cdcdda3a89
Update frogbot-scan-and-fix.properties.json
2022-08-24 15:41:50 +03:00
Omer Zidkoni
5fd9f56689
Update frogbot-scan-pr.yml
2022-08-23 16:56:36 +03:00
Omer Zidkoni
77485a55d0
Update frogbot-scan-and-fix.yml
2022-08-23 16:56:22 +03:00
Omer Zidkoni
c61f33a701
Merge branch 'main' into main
2022-08-23 11:21:25 +03:00
Omer Zidkoni
f4c529ed9f
Update frogbot-scan-and-fix.yml
2022-08-23 11:17:52 +03:00
Omer Zidkoni
27a76bc269
Update frogbot-scan-pr.yml
2022-08-23 11:17:35 +03:00
laurentsimon
5ab15a7349
Update scorecards.yml
2022-08-22 12:13:18 -07:00
omerzi
4d18310e04
added read permissions for private repos
2022-08-17 15:29:22 +03:00
Sampark Sharma
571a01b0f9
Merge branch 'main' into patch-1
2022-08-17 17:01:05 +05:30
omerzi
a82c7d200a
Code review changes
2022-08-17 09:41:13 +03:00
Keith Zantow
65d796c94f
Add Anchore Syft SBOM scan workflow
2022-08-16 12:47:02 -04:00
Dylan Rinker
b206471e4d
Update clj-holes.yml
...
- Fixed a typo in the upload-sarif@v1 action
- Commented out the rules-repository. The template will now default to rules in git://clj-holmes/clj-holmes-rules#main, but the format is preserved.
2022-08-16 09:24:41 -04:00
omerzi
e35bb09c20
Code review changes
2022-08-07 09:32:25 +03:00
omerzi
8d20e65309
Adding JFrog Frogbot to GitHub starter workflows
2022-07-26 10:56:16 +03:00
omerzi
157a5156d8
Adding JFrog Frogbot to GitHub starter workflows
2022-07-26 10:54:41 +03:00
Federico Builes
948fdf226a
Update the sample version of the Dependency Review action.
2022-06-28 17:20:56 +02:00
Jeevan Reddy Ragula
f2f7dfc0e6
Merge branch 'main' into main
2022-06-28 11:50:22 +05:30
Shaopeng Li
658980f080
Add lintr starter workflow
2022-06-27 20:51:38 -07:00
divyansh42
beafd2dec2
Add CRDA starter workflow and modify openshift workflow
...
Signed-off-by: divyansh42 <diagrawa@redhat.com >
2022-06-24 16:25:53 +05:30
Sampark Sharma
1a3f256934
Merge branch 'main' into patch-1
2022-06-23 16:23:28 +05:30
Teppei Fukuda
b2d74e9093
Update trivy-action to fix the performance issue
...
This version of trivy-action fixed an issue reported by GitHub. The detail is in https://github.com/aquasecurity/trivy/issues/2357 .
2022-06-23 08:36:06 +03:00