Commit Graph

304 Commits

Author SHA1 Message Date
Jeevan Reddy Ragula f2f7dfc0e6 Merge branch 'main' into main 2022-06-28 11:50:22 +05:30
divyansh42 beafd2dec2 Add CRDA starter workflow and modify openshift workflow
Signed-off-by: divyansh42 <diagrawa@redhat.com>
2022-06-24 16:25:53 +05:30
Sampark Sharma 1a3f256934 Merge branch 'main' into patch-1 2022-06-23 16:23:28 +05:30
Teppei Fukuda b2d74e9093 Update trivy-action to fix the performance issue
This version of trivy-action fixed an issue reported by GitHub. The detail is in https://github.com/aquasecurity/trivy/issues/2357.
2022-06-23 08:36:06 +03:00
Shaopeng Li bbd824dff4 use hash 2022-06-22 17:58:09 -07:00
Shaopeng Li be331aaa2f Add puppet-lint starter workflow 2022-06-22 17:54:14 -07:00
Austen Stone c91d79cf30 Update tfsec.yml (#1616) 2022-06-22 17:10:07 +05:30
Noah Irwin 11f6dcf7a3 Merge branch 'main' of https://github.com/actions/starter-workflows 2022-06-20 13:03:41 +01:00
Noah Irwin 3a8411e0fd Add workflow permissions 2022-06-20 11:44:08 +01:00
Jeevan Reddy Ragula 9af7784a12 Merge branch 'main' into main 2022-06-15 11:18:13 +05:30
Shaopeng Li 5864b8200b move What PHPMD does is... below PHPMD is a spin-off... 2022-06-14 03:20:43 -07:00
Shaopeng aa2b29b1c9 Merge branch 'main' into users/shaopeng-gh/phpmd 2022-06-13 13:43:51 -07:00
Shaopeng Li 724a2029a2 Merge branch 'users/shaopeng-gh/phpmd' of https://github.com/shaopeng-gh/starter-workflows into users/shaopeng-gh/phpmd 2022-06-13 13:38:12 -07:00
Shaopeng Li a0d1fc31f7 Add what PHPMD does 2022-06-13 13:38:09 -07:00
SOOS-JAlvarez 66d01dd6da code review - put exact hash of release 2022-06-13 08:50:37 -03:00
SOOS-JAlvarez 5f8fa2190b use codeql upload sarif action 2022-06-10 15:31:19 -03:00
Noah Irwin ad064a4af4 Updates from PR feedback 2022-06-10 11:35:06 +01:00
Noah Irwin a54c80f225 Adds Contrast Scan workflow 2022-06-09 12:52:18 +01:00
Shaopeng c71fa413a0 Merge branch 'main' into users/shaopeng-gh/phpmd 2022-06-09 03:02:48 -07:00
Jeevan Reddy Ragula 81d99f2216 Merge branch 'main' into main 2022-06-09 14:21:51 +05:30
Sampark Sharma 89327a1d93 Merge branch 'main' into update-42crunch 2022-06-09 12:48:57 +05:30
Sampark Sharma e2ed348af3 Merge branch 'main' into main 2022-06-09 12:40:17 +05:30
Shaopeng dfdd8fc8bc Merge branch 'main' into users/shaopeng-gh/phpmd 2022-06-08 12:59:53 -07:00
Satyam Chaurasia 7ba355c39e Adding changes of version and repo URL issue 2022-06-08 06:39:55 +05:30
Anton Krasovsky 44f8355dd3 Update workflow to use the newest version of 42Crunch REST API Static Security Testing Action 2022-06-07 17:57:25 +01:00
Sampark Sharma 36e2f0ff5a Merge branch 'main' into pysa 2022-06-07 18:37:00 +05:30
Sampark Sharma 7586af9685 Merge branch 'main' into pyre 2022-06-07 18:35:08 +05:30
Edward 862560d6d0 Add workflow for Pysa
https://github.com/facebook/pysa-action
https://github.com/facebook/pyre-check
2022-06-06 18:06:03 -04:00
Edward eda5a46a95 Add Pyre starter workflow 2022-06-06 18:04:42 -04:00
Sampark Sharma 55277da135 Merge branch 'main' into patch-2 2022-06-06 16:03:16 +05:30
satyamchaurasiapersistent ab9d895e8d Repo Url and SHA value updated. 2022-06-06 11:45:21 +05:30
satyamchaurasiapersistent def3d9a065 Merge pull request #1 from DhavalPatelPersistent/patch-1
Update checkmarx.yml
2022-06-06 11:40:16 +05:30
Shaopeng e6488c4510 Merge branch 'main' into users/shaopeng-gh/phpmd 2022-06-03 14:32:57 -07:00
Sampark Sharma d9a1c35a67 Merge branch 'main' into soosdast 2022-06-03 12:17:00 +05:30
SOOS-JAlvarez d33aefde62 updated action version 2022-06-02 12:12:22 -03:00
laurentsimon 74408a5287 Update scorecards.yml 2022-06-01 11:00:27 -07:00
laurentsimon 74b6f42255 Update scorecards.yml 2022-06-01 10:50:44 -07:00
laurentsimon 978c3bbb41 Update scorecards.yml 2022-06-01 09:15:10 -07:00
Shaopeng Li dfd625dcc4 use hash 2022-05-31 19:10:04 -07:00
Shaopeng Li 45198b14e0 phpmd 2022-05-31 18:51:10 -07:00
SOOS-JAlvarez 6f6fb6862e Merge pull request #1 from actions/main
Merge branch 'actions:main' into soosdast
2022-05-31 12:49:33 -03:00
Remco Vermeulen 7757e2cdbd Merge branch 'main' into patch-2 2022-05-31 14:34:24 +02:00
Remco Vermeulen 477f6af84e Shorten the comment
The comment is shortened by removing the URL to the documentation.

Co-authored-by: Sampark Sharma <phantsure@github.com>
2022-05-31 14:19:53 +02:00
Remco Vermeulen 27f5b1e9fd Add descriptive comment
The `actions: read` permission is only required when the workflow is executed in a private repository.
2022-05-31 12:28:16 +02:00
Remco Vermeulen 77df908268 Set fail-build property to false
Whenever a security issue is found the `scan action` fails the build and the step, which causes the workflow to fail before uploading the results to Code Scanning.
This change turns the error into a warning.
2022-05-30 14:16:42 +02:00
Remco Vermeulen b9fbda1e7d Add actions read permission
The CodeQL Action requires this permission to collect information of the workflow run.
2022-05-30 14:11:28 +02:00
SOOS-JAlvarez e2e966c910 couple fixes from review 2022-05-27 09:36:07 -03:00
laurentsimon 866ad3b83c updates 2022-05-26 14:50:13 +00:00
laurentsimon a80536a617 Scorecard v1.1.0 hash bump 2022-05-26 14:46:58 +00:00
SOOS-JAlvarez a4fc6b086e SOOS DAST starter action submission 2022-05-24 16:52:04 -03:00