Commit Graph

350 Commits

Author SHA1 Message Date
Jeevan Reddy Ragula e2ea54e6b2 Merge branch 'main' into main 2022-09-27 11:16:38 +05:30
Jeevan Reddy Ragula 6cf9b88b40 Merge branch 'main' into main 2022-09-27 10:00:13 +05:30
Keith Zantow 022ac9babb Update Anchore Grype scan action workflow 2022-09-26 10:33:41 -04:00
Sampark Sharma ff1e785cc6 Merge branch 'main' into patch-1 2022-09-26 12:17:07 +05:30
Gabriela Gutierrez aa0375afbf Remove trailing whitespaces 2022-09-23 18:04:56 -03:00
Eric Allard 4ea828e600 Merge branch 'main' into soos-dast-instructions-update 2022-09-23 10:12:44 -04:00
Isa Vilacides fcb996aeb2 Merge branch 'main' into simon-engledew/flip-workflow-check 2022-09-21 16:53:14 +02:00
Simon Engledew 23737db306 Make enterprise opt-in instead of opt-out 2022-09-21 15:45:41 +01:00
Simon Engledew 6b52b98767 Hide ESLint on GHES 2022-09-21 12:46:14 +01:00
omerzi e7e1dc2037 Update Frogbot's version 2022-09-20 16:36:24 +03:00
Sampark Sharma 67e9e6e817 Merge branch 'main' into codeql-category 2022-09-16 15:33:47 +05:30
Sampark Sharma a2618651d7 Merge branch 'main' into patch-1 2022-09-16 14:55:33 +05:30
Marco Gario cb341b59ed Update CodeQL to include category by default
Code Scanning can accept multiple uploads for the same tool and uses the concept of category to keep results separated.
If not provided explicitly, the category is computed based on a few parameters like workflow path and matrix variables. The implicit computation of the category can create confusion if users change their workflow, as we start considering the new analyses as unrelated to existing results.

By making the category explicit in the workflow we hope to make the concept more prominent and reduce accidental changes.
2022-09-16 09:25:07 +02:00
Chad Bentz 568b096f39 add actions: read to any job using upload-sarif 2022-09-14 18:17:28 -04:00
Azeem Shaikh 81fe53796f Update to scorecard-action:v2.0.3
Includes bug fixes
2022-09-14 09:37:06 -04:00
A-Katopodis cf9b684433 Updated powershell to v1.1 commit 2022-09-13 13:14:35 -05:00
Eric Allard 2426779103 Updated old instructions to add more detail 2022-09-09 15:00:01 -04:00
Jeevan Reddy Ragula f3d8f1331d Merge branch 'main' into main 2022-09-09 11:26:55 +05:30
naveensrinivasan 2333616c7d Upgraded scorecard action to v2.0.0
- Upgraded scorecard action to v2.0.0
https://github.com/ossf/scorecard-action/commit/13ec8c77e8a5dae7e0a0d47bde3e3004df15d34f

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2022-09-08 09:37:44 -05:00
Shaopeng f187f4a712 Merge branch 'main' into users/shaopeng-gh/lintr 2022-09-06 04:32:06 -07:00
Sampark Sharma 2184ca2468 Merge branch 'main' into main 2022-09-06 16:19:26 +05:30
Omer Zidkoni 7744fcb103 Merge branch 'main' into main 2022-09-06 09:28:31 +03:00
Sampark Sharma 3e8e8ddac6 Merge branch 'main' into setup-ruby-latest 2022-09-01 17:05:15 +05:30
Austen Stone a4af1b700b branches 2022-08-30 10:13:31 -04:00
Jeevan Reddy Ragula 5cb80783ab Merge branch 'main' into main 2022-08-30 18:01:42 +05:30
omerzi 2f880ea2a2 Update Frogbot permissions and Tag 2022-08-28 16:07:58 +03:00
James M. Greene 9d734850ef Update all usages of ruby/setup-ruby to latest 2022-08-25 23:42:31 -05:00
laurentsimon a640bca95a Merge branch 'main' into patch-3 2022-08-24 09:22:57 -07:00
Omer Zidkoni bb6277cf2a Update frogbot-scan-pr.properties.json 2022-08-24 15:42:10 +03:00
Omer Zidkoni cdcdda3a89 Update frogbot-scan-and-fix.properties.json 2022-08-24 15:41:50 +03:00
Omer Zidkoni 5fd9f56689 Update frogbot-scan-pr.yml 2022-08-23 16:56:36 +03:00
Omer Zidkoni 77485a55d0 Update frogbot-scan-and-fix.yml 2022-08-23 16:56:22 +03:00
Omer Zidkoni c61f33a701 Merge branch 'main' into main 2022-08-23 11:21:25 +03:00
Omer Zidkoni f4c529ed9f Update frogbot-scan-and-fix.yml 2022-08-23 11:17:52 +03:00
Omer Zidkoni 27a76bc269 Update frogbot-scan-pr.yml 2022-08-23 11:17:35 +03:00
laurentsimon 5ab15a7349 Update scorecards.yml 2022-08-22 12:13:18 -07:00
omerzi 4d18310e04 added read permissions for private repos 2022-08-17 15:29:22 +03:00
Sampark Sharma 571a01b0f9 Merge branch 'main' into patch-1 2022-08-17 17:01:05 +05:30
omerzi a82c7d200a Code review changes 2022-08-17 09:41:13 +03:00
Keith Zantow 65d796c94f Add Anchore Syft SBOM scan workflow 2022-08-16 12:47:02 -04:00
Dylan Rinker b206471e4d Update clj-holes.yml
- Fixed a typo in the upload-sarif@v1 action 
- Commented out the rules-repository. The template will now default to rules in git://clj-holmes/clj-holmes-rules#main, but the format is preserved.
2022-08-16 09:24:41 -04:00
omerzi e35bb09c20 Code review changes 2022-08-07 09:32:25 +03:00
omerzi 8d20e65309 Adding JFrog Frogbot to GitHub starter workflows 2022-07-26 10:56:16 +03:00
omerzi 157a5156d8 Adding JFrog Frogbot to GitHub starter workflows 2022-07-26 10:54:41 +03:00
Federico Builes 948fdf226a Update the sample version of the Dependency Review action. 2022-06-28 17:20:56 +02:00
Jeevan Reddy Ragula f2f7dfc0e6 Merge branch 'main' into main 2022-06-28 11:50:22 +05:30
Shaopeng Li 658980f080 Add lintr starter workflow 2022-06-27 20:51:38 -07:00
divyansh42 beafd2dec2 Add CRDA starter workflow and modify openshift workflow
Signed-off-by: divyansh42 <diagrawa@redhat.com>
2022-06-24 16:25:53 +05:30
Sampark Sharma 1a3f256934 Merge branch 'main' into patch-1 2022-06-23 16:23:28 +05:30
Teppei Fukuda b2d74e9093 Update trivy-action to fix the performance issue
This version of trivy-action fixed an issue reported by GitHub. The detail is in https://github.com/aquasecurity/trivy/issues/2357.
2022-06-23 08:36:06 +03:00