Commit Graph

2417 Commits

Author SHA1 Message Date
Daniel Garman fd2f8caed1 use the envvar and improve prompt for inference 2026-02-25 14:23:02 -05:00
Thomas Boop afb9bf3120 Merge pull request #3122 from nebuk89/nebuk89-tmp
Removing gulp and grunt as legacy and no longer required
2025-12-04 13:30:35 -05:00
Ben De St Paer-Gotch 41f167bbac Removing grunt as outdated 2025-12-04 16:58:03 +00:00
Ben De St Paer-Gotch c6f662d543 Removing gulp as legacy and no longer required 2025-12-04 11:00:00 +00:00
Thomas Horstmeyer 6c9f4c4030 Merge pull request #2499 from debricked/main
Update debricked.yml to use latest version of debricked/actions
2025-12-01 14:57:05 +01:00
Nagarjun Sanji ab2a8c2716 Merge branch 'actions:main' into main 2025-12-01 16:18:07 +05:30
Thomas Horstmeyer d3334c066a Merge pull request #3082 from mario-campos/mario-campos/codeql-action-v4
Update CodeQL action versions to v4 in workflow configuration
2025-10-15 16:42:18 +02:00
Mario Campos 43f0e19226 Add name to manual build step in CodeQL starter workflow 2025-10-09 13:42:49 -05:00
Mario Campos 69b278ad65 Update CodeQL action versions to v4 in workflow configuration 2025-10-07 10:11:06 -05:00
Beth Brennan 58e7cd05f5 Merge pull request #2900 from actions/nebuk89-patch-1 2025-06-06 07:37:31 -04:00
Ben De St Paer-Gotch 84e227a101 Update README.md 2025-06-06 11:45:43 +01:00
Anthony Zavala 43366bbd11 Merge pull request #2851 from sgoedecke/patch-1
Remove preview label from summary.properties.json
2025-04-24 08:59:56 -07:00
Sean Goedecke 736803bd21 Remove preview label from summary.properties.json 2025-04-24 10:30:31 +10:00
Anthony Zavala e101f44360 Merge pull request #2847 from sgoedecke/sgoedecke/add-new-preview-workflow
Add summary preview workflow
2025-04-23 07:58:07 -07:00
Sean Goedecke 5e895b8422 Merge branch 'main' into sgoedecke/add-new-preview-workflow 2025-04-23 11:22:24 +10:00
Sean Goedecke 17b8575ef8 Use latest version of checkout, add permission for checkout, and use RESPONSE variable 2025-04-22 21:41:43 +00:00
Sean Goedecke f1f24bdbc6 Remove newline 2025-04-22 06:22:40 +00:00
Sean Goedecke f0c24a6951 Sentence case step names 2025-04-22 06:21:00 +00:00
Sean Goedecke a041377b16 Add summary preview workflow 2025-04-22 06:16:47 +00:00
Anthony Zavala 9c3c789909 Merge pull request #2369 from actions/dependabot/github_actions/actions/cache-4
Bump actions/cache from 3 to 4
2025-04-21 17:18:56 -07:00
Anthony Zavala bd28c76fa9 Merge branch 'main' into dependabot/github_actions/actions/cache-4 2025-04-21 17:17:28 -07:00
Konrad Pabjan 85c6b7a620 Merge pull request #2786 from spencerschrock/scorecard-bug-fix
fix: Scorecard artifact upload and version bump
2025-03-25 16:53:12 -04:00
Konrad Pabjan 0d93bc2a4f Merge branch 'main' into scorecard-bug-fix 2025-03-25 16:52:46 -04:00
Yang Cao 17ba94afa4 Merge pull request #2588 from fortify/fortify-20241106
Update Fortify starter workflow
2025-03-24 14:05:43 -07:00
Ruud Senden 7525cf0deb Merge branch 'main' into fortify-20241106 2025-03-17 22:58:26 +01:00
Ruud Senden dd84e34b8d Update to latest published action version 2025-03-17 22:57:43 +01:00
Marco Gario a413869948 Merge pull request #2759 from felickz/patch-5
Code Scanning: bandit to latest hash
2025-03-05 14:09:23 +01:00
Chad Bentz c95135c3f9 Merge branch 'main' into patch-5 2025-03-05 01:28:16 -05:00
Spencer Schrock 4a5b4939a6 add future looking pull_request event to conditional
Scorecard currently has experimental support for the `pull_request`
trigger, so we want to allow analysis to be run for it in the future.

Signed-off-by: Spencer Schrock <sschrock@google.com>
2025-02-24 11:32:33 -07:00
Josh Soref 41e00af395 Limit scorecard to default branch
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
2025-02-24 11:32:28 -07:00
Spencer Schrock f70f9c8252 bump action versions to latest to resolve issues
1. Scorecard update v2.4.1 was released, which includes months of bug
   fixes and a new `file_mode` input to address a .gitattributes bug.
2. Bumped actions/upload-artifact to the v4 branch. This was previously
   kept at  v3 as GHES doesn't support v4, but github.com no longer
   supports v3: as uploads return the following error "Create Artifact
   Container failed: The artifact name JSON file is not valid."

  Signed-off-by: Spencer Schrock <sschrock@google.com>
2025-02-24 11:27:23 -07:00
AlexDeMichieli a00915e13e Merge pull request #2676 from blackduck-inc/main
Merging black-duck-security-scan template
2025-02-10 12:40:24 -08:00
Sadman Anik fcdc1287fc Fixed Linting Issues 2025-02-10 11:43:15 +06:00
Sadman Anik 345594d7f5 Updated actions/checkout v3 to v4 2025-02-07 14:47:21 +06:00
Sadman Anik 5969febe64 Resolved reviwed comments 2025-02-05 13:47:33 +06:00
Sadman Anik 51a27e7024 Merge branch 'main' into main 2025-02-04 16:17:52 +06:00
Chad Bentz 7db00754dc Code Scanning: bandit to latest hash
ab1d87dfccc5a0ffab88be3aaac6ffe35c10d6cd
2025-02-03 15:12:05 -05:00
Orhan Toy 55eb18560f Merge pull request #2748 from aeisenberg/patch-3
Add comments to codeql.yml
2025-02-03 13:22:17 +01:00
Andrew Eisenberg adcb922ec2 Make the example setup more explicit. 2025-01-30 16:50:30 -08:00
Sadman Anik 1de3a149b3 Update black-duck-security-scan-ci.yml 2025-01-30 13:48:02 +06:00
Andrew Eisenberg 7398b4eca4 Remove trailing whitespace 2025-01-29 15:39:32 -08:00
Andrew Eisenberg 2abfcee18d Update codeql.yml
Explicitly suggest that users add their setup steps before calling init.
2025-01-29 14:23:54 -08:00
Sadman Anik 56844b15c7 Merge branch 'main' into main 2025-01-28 12:45:05 +06:00
SOOS-GSteen 9085976703 SOOS Dast Feature Update (#2733)
* Update soos-dast-scan.yml

* Update soos-dast-scan.yml

* Update soos-dast-scan.yml
2025-01-23 18:15:51 -06:00
Josh Gross 1e05f3c86d Update starter workflows to use the latest artifact actions (#2726)
* Update starter workflows to use the latest artifact actions

* Ensure incompatible artifact actions aren't synced to GHES
2025-01-21 15:06:02 -05:00
Oscar Reimer c8284a423c Update debricked.yml
Update debricked.yml to use latest version debricked/actions
2025-01-16 14:03:53 +01:00
Beth Brennan f480e98459 Merge pull request #2465 from jsoref/bump-actions
Checkout: Update all workflows to use Checkout V4
2025-01-14 13:59:44 -05:00
Beth Brennan 3cd0650576 Merge branch 'main' into bump-actions 2025-01-14 13:13:27 -05:00
Josh Soref 95a3224907 Remove stray -
Co-authored-by: Beth Brennan <34719884+elbrenn@users.noreply.github.com>
2025-01-13 20:52:25 -05:00
Fabian Aguilar Gomez b001911fc6 Merge pull request #2720 from actions/update-ruby
Update jekyll.yml
2025-01-13 15:05:21 -06:00