dependabot[bot]
3f74904737
Bump actions/checkout from 4 to 5
...
Validate Data / validate-data (push) Has been cancelled
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4 to 5.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v4...v5 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: '5'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-08-11 20:26:14 +00:00
Beth Brennan
58e7cd05f5
Merge pull request #2900 from actions/nebuk89-patch-1
2025-06-06 07:37:31 -04:00
Ben De St Paer-Gotch
84e227a101
Update README.md
2025-06-06 11:45:43 +01:00
Anthony Zavala
43366bbd11
Merge pull request #2851 from sgoedecke/patch-1
...
Remove preview label from summary.properties.json
2025-04-24 08:59:56 -07:00
Sean Goedecke
736803bd21
Remove preview label from summary.properties.json
2025-04-24 10:30:31 +10:00
Anthony Zavala
e101f44360
Merge pull request #2847 from sgoedecke/sgoedecke/add-new-preview-workflow
...
Add summary preview workflow
2025-04-23 07:58:07 -07:00
Sean Goedecke
5e895b8422
Merge branch 'main' into sgoedecke/add-new-preview-workflow
2025-04-23 11:22:24 +10:00
Sean Goedecke
17b8575ef8
Use latest version of checkout, add permission for checkout, and use RESPONSE variable
2025-04-22 21:41:43 +00:00
Sean Goedecke
f1f24bdbc6
Remove newline
2025-04-22 06:22:40 +00:00
Sean Goedecke
f0c24a6951
Sentence case step names
2025-04-22 06:21:00 +00:00
Sean Goedecke
a041377b16
Add summary preview workflow
2025-04-22 06:16:47 +00:00
Anthony Zavala
9c3c789909
Merge pull request #2369 from actions/dependabot/github_actions/actions/cache-4
...
Bump actions/cache from 3 to 4
2025-04-21 17:18:56 -07:00
Anthony Zavala
bd28c76fa9
Merge branch 'main' into dependabot/github_actions/actions/cache-4
2025-04-21 17:17:28 -07:00
Konrad Pabjan
85c6b7a620
Merge pull request #2786 from spencerschrock/scorecard-bug-fix
...
fix: Scorecard artifact upload and version bump
2025-03-25 16:53:12 -04:00
Konrad Pabjan
0d93bc2a4f
Merge branch 'main' into scorecard-bug-fix
2025-03-25 16:52:46 -04:00
Yang Cao
17ba94afa4
Merge pull request #2588 from fortify/fortify-20241106
...
Update Fortify starter workflow
2025-03-24 14:05:43 -07:00
Ruud Senden
7525cf0deb
Merge branch 'main' into fortify-20241106
2025-03-17 22:58:26 +01:00
Ruud Senden
dd84e34b8d
Update to latest published action version
2025-03-17 22:57:43 +01:00
Marco Gario
a413869948
Merge pull request #2759 from felickz/patch-5
...
Code Scanning: bandit to latest hash
2025-03-05 14:09:23 +01:00
Chad Bentz
c95135c3f9
Merge branch 'main' into patch-5
2025-03-05 01:28:16 -05:00
Spencer Schrock
4a5b4939a6
add future looking pull_request event to conditional
...
Scorecard currently has experimental support for the `pull_request`
trigger, so we want to allow analysis to be run for it in the future.
Signed-off-by: Spencer Schrock <sschrock@google.com >
2025-02-24 11:32:33 -07:00
Josh Soref
41e00af395
Limit scorecard to default branch
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-02-24 11:32:28 -07:00
Spencer Schrock
f70f9c8252
bump action versions to latest to resolve issues
...
1. Scorecard update v2.4.1 was released, which includes months of bug
fixes and a new `file_mode` input to address a .gitattributes bug.
2. Bumped actions/upload-artifact to the v4 branch. This was previously
kept at v3 as GHES doesn't support v4, but github.com no longer
supports v3: as uploads return the following error "Create Artifact
Container failed: The artifact name JSON file is not valid."
Signed-off-by: Spencer Schrock <sschrock@google.com >
2025-02-24 11:27:23 -07:00
AlexDeMichieli
a00915e13e
Merge pull request #2676 from blackduck-inc/main
...
Merging black-duck-security-scan template
2025-02-10 12:40:24 -08:00
Sadman Anik
fcdc1287fc
Fixed Linting Issues
2025-02-10 11:43:15 +06:00
Sadman Anik
345594d7f5
Updated actions/checkout v3 to v4
2025-02-07 14:47:21 +06:00
Sadman Anik
5969febe64
Resolved reviwed comments
2025-02-05 13:47:33 +06:00
Sadman Anik
51a27e7024
Merge branch 'main' into main
2025-02-04 16:17:52 +06:00
Chad Bentz
7db00754dc
Code Scanning: bandit to latest hash
...
ab1d87dfccc5a0ffab88be3aaac6ffe35c10d6cd
2025-02-03 15:12:05 -05:00
Orhan Toy
55eb18560f
Merge pull request #2748 from aeisenberg/patch-3
...
Add comments to codeql.yml
2025-02-03 13:22:17 +01:00
Andrew Eisenberg
adcb922ec2
Make the example setup more explicit.
2025-01-30 16:50:30 -08:00
Sadman Anik
1de3a149b3
Update black-duck-security-scan-ci.yml
2025-01-30 13:48:02 +06:00
Andrew Eisenberg
7398b4eca4
Remove trailing whitespace
2025-01-29 15:39:32 -08:00
Andrew Eisenberg
2abfcee18d
Update codeql.yml
...
Explicitly suggest that users add their setup steps before calling init.
2025-01-29 14:23:54 -08:00
Sadman Anik
56844b15c7
Merge branch 'main' into main
2025-01-28 12:45:05 +06:00
SOOS-GSteen
9085976703
SOOS Dast Feature Update ( #2733 )
...
* Update soos-dast-scan.yml
* Update soos-dast-scan.yml
* Update soos-dast-scan.yml
2025-01-23 18:15:51 -06:00
Josh Gross
1e05f3c86d
Update starter workflows to use the latest artifact actions ( #2726 )
...
* Update starter workflows to use the latest artifact actions
* Ensure incompatible artifact actions aren't synced to GHES
2025-01-21 15:06:02 -05:00
Beth Brennan
f480e98459
Merge pull request #2465 from jsoref/bump-actions
...
Checkout: Update all workflows to use Checkout V4
2025-01-14 13:59:44 -05:00
Beth Brennan
3cd0650576
Merge branch 'main' into bump-actions
2025-01-14 13:13:27 -05:00
Josh Soref
95a3224907
Remove stray -
...
Co-authored-by: Beth Brennan <34719884+elbrenn@users.noreply.github.com >
2025-01-13 20:52:25 -05:00
Fabian Aguilar Gomez
b001911fc6
Merge pull request #2720 from actions/update-ruby
...
Update jekyll.yml
2025-01-13 15:05:21 -06:00
Fabian Aguilar Gomez
f8ea592ee6
Update jekyll.yml
2025-01-13 14:54:01 -06:00
Beth Brennan
f4f8d50fb6
Merge pull request #2711 from jsoref/fix-octopus-deploy
...
Fix octopus deploy
2025-01-13 12:59:45 -05:00
Beth Brennan
016b90714a
Merge branch 'main' into fix-octopus-deploy
2025-01-13 12:56:22 -05:00
Beth Brennan
a38d8caf42
Merge pull request #2464 from jsoref/ubuntu-latest
...
Ubuntu-Latest: Update all workflows to use ubuntu-latest
2025-01-13 12:54:55 -05:00
Beth Brennan
e1deb63e94
Merge branch 'main' into ubuntu-latest
2025-01-13 12:52:40 -05:00
Josh Soref
be1cddbe1d
Checkout: Update all workflows to use Checkout V4
2025-01-06 09:43:57 -05:00
Josh Soref
d9c5f62b74
Fix sentence style
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-01-06 09:25:40 -05:00
Josh Soref
17f0d2485e
Use unix line endings
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-01-06 09:25:36 -05:00
Josh Soref
9351ace4ef
Remove trailing whitespace
...
> trim trailing whitespace.................................................Failed
> - hook id: trailing-whitespace
> - exit code: 1
> - files were modified by this hook
>
> Fixing deployments/octopusdeploy.yml
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2025-01-06 09:25:31 -05:00
Sadman Anik
9e76f8420e
Merge pull request #2 from blackduck-inc/blackducksecurityscan-template
...
Used hash instead of tag name
2024-12-23 16:50:51 +06:00
Sadman Anik
84747ed355
Used hash instead of tag name
2024-12-23 16:49:39 +06:00
Sadman Anik
1c8781f5a6
Merge pull request #1 from blackduck-inc/blackducksecurityscan-template
...
Blackducksecurityscan template
2024-12-18 18:08:10 +06:00
Sadman Anik
4a84ccf8e0
Added black duck security scan action template
2024-12-18 18:07:23 +06:00
Sadman Anik
1cc1562949
Added Black-Duck-Security-Scan logo
2024-12-18 17:52:20 +06:00
Rob E
f90b59f7cd
Add Octopus Deploy release and deploy workflow ( #2651 )
...
* Create Octopus Deploy workflow template
* add properties file
* Pin step versions
* update some text
* add octopus icon
* added linebreak
Co-authored-by: Alexis Abril <alexisabril@github.com >
* added linebreak
Co-authored-by: Alexis Abril <alexisabril@github.com >
* update octopusdeploy icon name
---------
Co-authored-by: Alexis Abril <alexisabril@github.com >
2024-12-13 10:54:28 -06:00
Beth Brennan
dfc0cdc56b
Merge pull request #2345 from trail-of-forks/ww/trusted-publish
...
ci/python-publish: bump, use trusted publishing
2024-11-22 10:03:25 -05:00
William Woodruff
00795b7fee
Apply suggestions from code review
2024-11-22 09:48:05 -05:00
William Woodruff
eee067e3ca
Apply suggestions from code review
...
Co-authored-by: Zach Steindler <steiza@github.com >
2024-11-22 09:47:32 -05:00
Ruud Senden
0486897d48
Update action version, update comment
2024-11-22 14:24:04 +01:00
Ruud Senden
1c6c18c8ea
Remove trailing spaces
2024-11-08 11:31:30 +01:00
Ruud Senden
196973618e
Remove trailing spaces
2024-11-08 11:30:15 +01:00
Ruud Senden
4cbe5359f3
Update Fortify starter workflow
2024-11-08 11:18:15 +01:00
William Woodruff
eb32979001
Update ci/python-publish.yml
...
Co-authored-by: Sviatoslav Sydorenko (Святослав Сидоренко) <wk.cvs.github@sydorenko.org.ua >
2024-11-06 21:03:35 -05:00
William Woodruff
347784759f
Update ci/python-publish.yml
...
Co-authored-by: Sviatoslav Sydorenko (Святослав Сидоренко) <wk.cvs.github@sydorenko.org.ua >
2024-11-06 17:10:48 -05:00
William Woodruff
66c4bdd7f5
Merge branch 'main' into ww/trusted-publish
2024-11-05 12:52:19 -05:00
William Woodruff
958eb20360
Update ci/python-publish.yml
...
Co-authored-by: Sviatoslav Sydorenko (Святослав Сидоренко) <wk.cvs.github@sydorenko.org.ua >
2024-11-05 12:50:41 -05:00
Orhan Toy
1394e47812
Merge pull request #2559 from ilya-k-1/jfrog/add_jfrog_sast_flow
...
Add jfrog-sast flow
2024-10-22 21:55:05 +02:00
Ilya Khivrich
7f50c70218
pass token over stdin, add security to properties
2024-10-22 11:53:35 +03:00
Ilya Khivrich
09fa3b9723
add jfrog-sast flow
2024-10-21 23:01:52 +03:00
ginilpg
666350e29b
Added appknox.yml for code scanning ( #2498 )
...
Create appknox.json
Create appknox.svg
Update appknox.json
Update appknox.svg
Rename appknox.json to appknox.properties.json
Update appknox.yml
Update appknox.yml
Update appknox.properties.json
Formatting yml
Removed preview mode from appknox scanner
Removed preview mode from appknox scanner
Add Appknox starter workflow (#2447 )
* Added appknox.yml for code scanning
* Create appknox.json
* Create appknox.svg
* Update appknox.json
* Update appknox.svg
* Rename appknox.json to appknox.properties.json
* Update appknox.yml
* Update appknox.yml
* Update appknox.properties.json
* Formatting yml
removed preview mode
removed preview mode
precommit lint
2024-09-17 13:50:21 -05:00
Thomas Horstmeyer
8190cec3e1
Merge pull request #2496 from aeisenberg/patch-2
...
Update eslint.yml
2024-09-12 17:09:53 +02:00
Andrew Eisenberg
dea60ba593
Update code-scanning/eslint.yml
2024-09-11 11:12:06 -07:00
Andrew Eisenberg
9d2ae7c028
Update appknox.yml
...
Fix more whitespace issues.
2024-09-10 11:50:28 -07:00
Andrew Eisenberg
ddb47be888
Update appknox.yml
...
Fix linting errors (remove whitespace).
2024-09-10 11:46:17 -07:00
Andrew Eisenberg
53980cb868
Update eslint.yml
...
Ensure suppressed warnings don't make it into the SARIF.
2024-09-10 11:10:00 -07:00
ginilpg
9db23a2437
Add Appknox starter workflow ( #2447 )
...
* Added appknox.yml for code scanning
* Create appknox.json
* Create appknox.svg
* Update appknox.json
* Update appknox.svg
* Rename appknox.json to appknox.properties.json
* Update appknox.yml
* Update appknox.yml
* Update appknox.properties.json
* Formatting yml
2024-09-10 09:41:53 -05:00
William Woodruff
bc709b6e00
python-publish: bump commit/ref
...
Signed-off-by: William Woodruff <william@trailofbits.com >
2024-09-04 17:08:14 -04:00
William Woodruff
09465a4884
Merge branch 'main' into ww/trusted-publish
2024-09-04 16:51:13 -04:00
Marco Gario
9fccc75f83
Merge pull request #2482 from felickz/patch-5
...
CodeQL - Add unique workflow name `CodeQL Advanced` vs default setup's `CodeQL`
2024-09-03 11:55:34 +02:00
Chad Bentz
6ac176a96e
CodeQL - Add unique name vs default setup
2024-08-23 10:49:57 -04:00
Seth Vargo
ae01bb2a2f
google: update workflow versions and instructions ( #2478 )
...
* google: update workflow versions and instructions
* Pin hashes
2024-08-21 13:21:42 -05:00
William Woodruff
26ad7a7549
Update ci/python-publish.yml
...
Co-authored-by: Sviatoslav Sydorenko (Святослав Сидоренко) <wk.cvs.github@sydorenko.org.ua >
2024-08-20 13:39:26 -04:00
Orhan Toy
91fe144014
Merge pull request #2479 from igfoo/igfoo/swift_timeout
...
CodeQL: Remove Swift 2h timeout
2024-08-20 15:06:17 +02:00
Ian Lynagh
ba125834f1
CodeQL: Remove Swift 2h timeout
...
Spurious intermittent timeouts are no longer expected on Swift.
2024-08-20 12:06:59 +01:00
William Woodruff
e5a2609958
Merge branch 'main' into ww/trusted-publish
2024-08-16 12:59:34 -04:00
William Woodruff
5ad49471fe
Update ci/python-publish.yml
...
Co-authored-by: Gagan Deep <the.one.above.all.titan@gmail.com >
2024-08-16 12:58:55 -04:00
Michael Chernov
83b6e98d43
Add Debricked starter workflow ( #2107 )
...
* Add Debricked starter workflow
* Add permissions section
* Remove schedule
* Fix review comments
---------
Co-authored-by: Alexis Abril <alexisabril@github.com >
2024-08-16 10:16:20 -05:00
SOOS-GSteen
af1bbdc430
Update soos-dast-scan.yml hash ( #2466 )
...
* Update soos-dast-scan.yml
* Update soos-dast-scan.yml
* Update soos-dast-scan.yml
* Update soos-dast-scan.yml
2024-08-16 10:10:57 -05:00
Beth Brennan
f81606ba01
Merge pull request #2468 from bigdaz/main
...
Update for `gradle/actions@v4.0.0` release
2024-08-12 12:14:29 -04:00
daz
fdb3717e44
Update for gradle/actions@v4.0.0 release
...
- Bump version hashes to use `gradle/actions/setup-gradle@v4.0.0`
- Bump version hash to use `gradle/actions/dependency-submission@v4.0.0`
2024-08-07 11:04:34 -06:00
Josh Soref
a5047545ff
Ubuntu-Latest: Update all workflows to use ubuntu-latest
2024-08-06 01:11:49 -04:00
Jacob Wallraff
5241fd1653
Merge pull request #2461 from actions/thyeggman-patch-1
...
Update stale.yml to only use workflow_dispatch
2024-08-01 15:47:13 -07:00
Jacob Wallraff
9512b1a781
Update stale.yml to only use workflow_dispatch
2024-08-01 15:42:06 -07:00
Jacob Wallraff
6707b74736
Merge pull request #2460 from actions/thyeggman-patch-1
...
Update labeler.yml for v5
2024-08-01 15:36:49 -07:00
Jacob Wallraff
e5c27e8769
Merge branch 'main' into thyeggman-patch-1
2024-08-01 15:24:51 -07:00
Jacob Wallraff
5eed24dede
Merge pull request #2402 from Ross-ForAllSecure/main
...
Update Mayhem for API to reference new site
2024-08-01 15:20:34 -07:00
Jacob Wallraff
a44a949b68
Update labeler.yml for v5
2024-08-01 15:19:04 -07:00
Jacob Wallraff
4f23ad37d7
Merge branch 'main' into main
2024-08-01 15:06:16 -07:00
Jacob Wallraff
7fc34f22af
Merge pull request #2384 from jsoref/bump-actions-labeler
...
Labeler: Update to v5
2024-08-01 15:05:45 -07:00
Jacob Wallraff
881de4bdab
Merge branch 'main' into bump-actions-labeler
2024-08-01 15:02:11 -07:00
Jacob Wallraff
2918f7d6de
Merge pull request #2386 from jsoref/issue-2385
...
fix(openshift): comment out dangling dependency
2024-08-01 14:57:37 -07:00
Jacob Wallraff
dfcb7f5c98
Merge branch 'main' into issue-2385
2024-08-01 14:54:31 -07:00
Jacob Wallraff
81a51b81d8
Merge branch 'main' into main
2024-08-01 14:50:04 -07:00
Jacob Wallraff
c7c1192096
Merge pull request #2424 from AntoineDona/datadog-update
...
Update DataDog/synthetics-ci-github-action workflow
2024-08-01 14:35:39 -07:00
Jacob Wallraff
b5d5fd9c74
Merge branch 'main' into datadog-update
2024-08-01 14:32:56 -07:00
Jacob Wallraff
ee5db07422
Merge pull request #2427 from jamiemccarthy/jm-ci-rubyonrails-binstubs
...
Fix ci/rubyonrails bugs, using binstubs
2024-07-31 17:18:51 -07:00
Jacob Wallraff
a7ba2cac94
Merge branch 'main' into jm-ci-rubyonrails-binstubs
2024-07-31 17:13:55 -07:00
Jacob Wallraff
9dc81a3b0f
Merge pull request #2439 from cdsap/main
...
Update for gradle/actions@v3.4.2 release
2024-07-31 17:10:06 -07:00
Jacob Wallraff
d7fb74c021
Merge branch 'main' into main
2024-07-31 17:04:58 -07:00
Jacob Wallraff
917cb9d365
Merge pull request #2420 from yahavi/bump-frogbot
...
Frogbot: Update to 2.21.2
2024-07-31 17:01:48 -07:00
Jacob Wallraff
aa685e127e
Merge branch 'main' into bump-frogbot
2024-07-31 16:58:12 -07:00
Jacob Wallraff
c46165a596
Merge pull request #2379 from jsoref/bump-actions-upload-sarif
...
Upload-Sarif: Update all workflows to use Upload-Sarif V3
2024-07-30 10:42:02 -07:00
Jacob Wallraff
e1c2a477dd
Merge branch 'main' into bump-actions-upload-sarif
2024-07-30 10:41:29 -07:00
Jacob Wallraff
9598b1c10b
Merge pull request #2380 from jsoref/bump-actions-setup-node
...
Setup-Node: Update all workflows to use Setup-Node V4
2024-07-30 10:40:28 -07:00
Jacob Wallraff
1e293eebe5
Merge branch 'main' into bump-actions-setup-node
2024-07-30 10:38:56 -07:00
Jacob Wallraff
137b5a7ff5
Merge pull request #2381 from jsoref/bump-actions-setup-java
...
Setup-Java: Update all workflows to use Setup-Java V4
2024-07-30 10:38:12 -07:00
Jacob Wallraff
7be9afd1d3
Merge branch 'main' into bump-actions-setup-java
2024-07-30 10:37:42 -07:00
Jacob Wallraff
27da85b098
Merge pull request #2382 from jsoref/bump-actions-setup-dotnet
...
Setup-Dotnet: Update all workflows to Setup-Dotnet V4
2024-07-30 10:36:14 -07:00
Jacob Wallraff
a256a78ce8
Merge branch 'main' into bump-actions-setup-dotnet
2024-07-30 10:35:14 -07:00
Jacob Wallraff
3eb748f5a7
Merge pull request #2458 from actions/revert-2383-bump-actions-load-artifact
...
Revert "Artifacts: Update all workflows to use Artifacts V4"
2024-07-30 10:33:54 -07:00
Jacob Wallraff
fe6ffc79e3
Merge branch 'main' into bump-actions-setup-dotnet
2024-07-30 10:21:02 -07:00
Jacob Wallraff
47f69d786f
Revert "Artifacts: Update all workflows to use Artifacts V4"
2024-07-30 10:17:07 -07:00
Jacob Wallraff
cf76f82ab8
Merge pull request #2383 from jsoref/bump-actions-load-artifact
...
Artifacts: Update all workflows to use Artifacts V4
2024-07-30 10:16:58 -07:00
Josh Soref
570cd926cd
Switch github upload sarif to tag
...
GitHub owed actions are allowed to use tags instead of SHAs
Co-authored-by: Jacob Wallraff <thyeggman@github.com >
2024-07-29 14:37:50 -04:00
Jacob Wallraff
04bebdd039
Merge branch 'main' into bump-actions-setup-node
2024-07-29 10:04:36 -07:00
Jacob Wallraff
bb5f99bd4f
Merge branch 'main' into bump-actions-setup-java
2024-07-29 10:03:02 -07:00
Jacob Wallraff
309e783fdd
Merge branch 'main' into bump-actions-setup-dotnet
2024-07-29 10:02:03 -07:00
Jacob Wallraff
9be7944e1d
Merge branch 'main' into bump-actions-load-artifact
2024-07-29 10:01:18 -07:00
Josh Soref
763a1a60f8
Upload-Sarif: Update all workflows to use Upload-Sarif V3
2024-07-25 09:43:06 -04:00
Antoine Do Nascimento
b92a38fab5
Merge branch 'main' into datadog-update
2024-07-11 13:48:11 +02:00
Yoann Chaudet
889ae22e02
Merge pull request #2442 from jmooring/update-hugo-workflow
...
pages: Update Hugo workflow
2024-07-02 08:12:24 -07:00
Joe Mooring
e6a8487877
pages: Update Hugo workflow
...
- Bump version
- Set cache directory
- Remove outdated environment variable
2024-07-02 06:21:42 -07:00
Antoine Do Nascimento
46555797bb
Fix wrong hash
2024-06-28 15:00:32 +02:00
yahavi
eb0381de25
Update to 2.21.2
2024-06-28 15:56:30 +03:00
Yahav Itschak
a2d9dce826
Merge branch 'main' into bump-frogbot
2024-06-28 15:54:25 +03:00
Antoine Do Nascimento
856c9e2ca3
Merge branch 'main' into datadog-update
2024-06-24 11:19:45 +02:00
Inaki Villar
dc63c580c6
Update for gradle/actions@v3.4.2 release
2024-06-21 11:33:35 -07:00
William Woodruff
87834aa25a
Merge branch 'main' into ww/trusted-publish
2024-06-21 14:19:05 -04:00
alankuo-aws
647cac4f34
Update policy validator starter workflows ( #2433 )
...
* Update policy validator starter workflows
* Fix reference policy argument
2024-06-17 15:32:21 -05:00
William Woodruff
ca0102554e
Merge branch 'main' into ww/trusted-publish
2024-06-13 14:32:49 -04:00
Jamie McCarthy
0321f5f585
Run lint with binstubs
2024-06-08 12:19:48 -04:00
Jamie McCarthy
5a11e5968c
Reference latest ruby/setup-ruby (1.179.1) with commit hash
...
Can build ruby 3.1.6 and 3.3.2
2024-06-08 11:49:18 -04:00
Jamie McCarthy
a0f4ad05c6
Merge branch 'main' into jm-ci-rubyonrails
2024-06-08 10:41:26 -05:00
Antoine Do Nascimento
5c09eb81e5
Merge branch 'main' into datadog-update
2024-06-04 11:36:54 +02:00
Antoine Vinot
9f1db53454
Update sonarcloud.yml after latest release of the action ( #2405 )
...
Co-authored-by: Alexis Abril <alexisabril@github.com >
2024-06-03 13:58:42 -05:00
Antoine Do Nascimento
74366efdcd
Update DataDog/synthetics-ci-github-action workflow
2024-06-03 17:26:02 +02:00
Jamie McCarthy
f308bd9594
Merge branch 'main' into jm-ci-rubyonrails
2024-06-02 09:05:24 -05:00
yahavi
de925c96d9
Frogbot: Update to 2.21.0
2024-06-01 18:58:42 +03:00
Felipe Suero
c2f413dda8
Merge pull request #2414 from actions/docker-patch
...
Update cosign versions in Docker-publish
2024-05-30 12:42:09 -04:00
Justin Hutchings
61d42c9d0c
Update cosign versions
2024-05-30 09:34:08 -07:00
Konrad Pabjan
7ce8d3209a
Merge pull request #2403 from cory-miller/main
...
Fix typo in grade starter workflow
2024-05-23 17:48:39 -04:00
Cory Miller
39131434ed
Fix typo in grade starter workflow
2024-05-22 10:25:41 -04:00
Ross Rogers
7ea2dd7e08
Update Mayhem for API to reference new site
2024-05-21 14:38:32 -07:00
William Woodruff
841e9af24c
Merge branch 'main' into ww/trusted-publish
2024-05-13 18:11:38 -04:00
Marco Gario
e83edef5d8
Merge pull request #2392 from felickz/patch-5
...
CodeQL - Specify bash shell so that it doesn't fail if switching to 'windows`
2024-05-13 11:29:25 +02:00
Marco Gario
899b09ba54
Merge branch 'main' into patch-5
2024-05-13 11:29:02 +02:00
Dylan
6702f0d2e3
Fortify Starter Workflow to use new Fortify AST Action ( #2245 )
...
* Update Fortify logo
* Update fortify workflow
Update positioning, Github action versions, Java version and add in Debricked packaging support
* Update fortify.properties.json
Update languages and creator
* Update fortify.yml
Update triggers based on latest starter workflow guidelines
* Update code-scanning/fortify.yml
Co-authored-by: James M. Greene <JamesMGreene@github.com >
* Update code-scanning/fortify.yml
Co-authored-by: James M. Greene <JamesMGreene@github.com >
* Update code-scanning/properties/fortify.properties.json
Co-authored-by: James M. Greene <JamesMGreene@github.com >
* Update code-scanning/fortify.yml
Co-authored-by: James M. Greene <JamesMGreene@github.com >
* Update code-scanning/fortify.yml
Co-authored-by: James M. Greene <JamesMGreene@github.com >
* Update code-scanning/fortify.yml
Co-authored-by: James M. Greene <JamesMGreene@github.com >
* Update fortify.yml
* Update fortify.properties.json
* Update fortify.yml
Update starter workflow to use new unified Fortify AST Action
* Update fortify.yml
* Update fortify.yml
* Update fortify.yml
Refine workflow comments
* Update fortify.yml
Bump checkout action version
* Update fortify.yml
* Update fortify.yml
* Update fortify.yml
One final clean up
* Update fortify.properties.json
* Update fortify.yml
* Update fortify.yml
* Update fortify.properties.json
Update with support for Bicep and Solidity
* Update fortify.properties.json
Uppercase "Solidity" for consistency
* Change v1 to commit hash
---------
Co-authored-by: James M. Greene <JamesMGreene@github.com >
Co-authored-by: Ruud Senden <8635138+rsenden@users.noreply.github.com >
2024-05-06 13:57:14 +00:00
Chad Bentz
b30fbdf5f2
Specify bash shell so that it doesn't fail if switching to 'windows`
2024-05-02 10:59:15 -04:00
Yoann Chaudet
9b485d4f8a
Merge pull request #2388 from actions/readonly-sync
...
Add the concept of a "read-only" synced folder
2024-04-29 14:44:06 -07:00
Yoann Chaudet
2c3a9cab03
Update script/sync-ghes/index.ts
2024-04-29 13:46:23 -07:00
Yoann Chaudet
dd92d3760d
wip
2024-04-29 13:43:22 -07:00
Yoann Chaudet
0073136905
wip
2024-04-29 13:40:32 -07:00
Yoann Chaudet
9f6e4a9e7d
wip
2024-04-29 13:38:43 -07:00
Yoann Chaudet
3fa8d369da
async
2024-04-29 13:37:57 -07:00
Yoann Chaudet
ddca0a9327
async
2024-04-29 13:33:45 -07:00
Yoann Chaudet
66e7ed44ca
wip
2024-04-29 13:31:34 -07:00
Yoann Chaudet
138375ba29
wip
2024-04-29 13:30:15 -07:00
Yoann Chaudet
1e15901e1c
wip
2024-04-29 13:20:27 -07:00
Yoann Chaudet
252e935e86
ghes
2024-04-29 13:17:24 -07:00
Yoann Chaudet
c7480532d0
again
2024-04-29 13:16:50 -07:00
Yoann Chaudet
264962401d
ici
2024-04-29 13:03:21 -07:00
Yoann Chaudet
79af930b77
Merge pull request #2376 from actions/tsusdere-patch-1
...
Remove Pages starter workflows from the sync automation
2024-04-29 12:05:15 -07:00
Yoann Chaudet
15066a3fd2
Merge branch 'main' into tsusdere-patch-1
2024-04-29 11:58:54 -07:00
Yoann Chaudet
7d07997513
Update script/sync-ghes/settings.json
2024-04-29 11:57:05 -07:00
Yoann Chaudet
d526113a1b
Update script/sync-ghes/settings.json
2024-04-29 11:56:46 -07:00
Yoann Chaudet
5902ad751b
Update script/sync-ghes/settings.json
2024-04-29 11:56:18 -07:00
William Woodruff
93f1d5f44d
Merge branch 'main' into ww/trusted-publish
2024-04-28 13:48:20 -04:00
Jamie McCarthy
e656ded9f0
Reference ruby/setup-ruby with latest commit hash
...
As required in pull_request_template.md
2024-04-26 07:17:53 -04:00
Jamie McCarthy
64be628534
Merge branch 'main' into jm-ci-rubyonrails
2024-04-26 06:13:12 -05:00
Josh Soref
23a568e80a
fix(openshift): comment out dangling dependency
2024-04-25 21:32:56 -04:00
Josh Soref
1830845916
Setup-Node: Update all workflows to use Setup-Node V4
...
* Switch default node version to 20
* Update version set to 18.x, 20.x, 22.x
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2024-04-25 17:42:55 -04:00
Josh Soref
a072fdfb1c
Labeler: Update to v5
2024-04-25 17:10:59 -04:00
Josh Soref
d51dfabea2
Artifacts: Update all workflows to use Artifacts V4
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2024-04-25 16:11:16 -04:00
Josh Soref
545832af8b
Setup-Dotnet: Update all workflows to Setup-Dotnet V4
2024-04-25 14:27:37 -04:00
Josh Soref
37d6de723e
Setup-Java: Update all workflows to use Setup-Java V4
...
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com >
2024-04-25 14:15:25 -04:00
dependabot[bot]
b81d5bf895
Bump actions/cache from 3 to 4
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3 to 4.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](https://github.com/actions/cache/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2024-04-25 16:53:16 +00:00
Dan Rigby
2435e57601
Merge pull request #2270 from jsoref/bump-actions
...
Checkout: Update all workflows to use Checkout V4
2024-04-25 12:52:18 -04:00
Dan Rigby
8ff5c7e7bb
Merge branch 'main' into bump-actions
2024-04-25 12:51:52 -04:00
Fabian Aguilar Gomez
29b0a3e3a9
Update settings.json
2024-04-19 16:30:57 -05:00
Fabian Aguilar Gomez
7e9ab60c5f
remove pages for now
2024-04-19 16:26:10 -05:00
mponaws
ac9c407320
Add starter-workflows for Policy Validator ( #2375 )
...
* Add starter-workflows for Policy Validator
* Add starter-workflows for Policy Validator
* Add starter-workflows for Policy Validator, removed references to GitHub secrets & S3 to keep it simple
2024-04-18 14:39:17 -05:00
Marco Gario
9963e8cd28
Merge pull request #2372 from actions/codeql-packages-read
...
Update CodeQL workflow to use packages:read permission.
2024-04-11 13:17:21 +02:00
Marco Gario
a3194f5b47
Update CodeQL workflow to use packages:read permission.
...
Co-authored-by: Anders Starcke Henriksen <starcke@github.com >
2024-04-11 09:42:21 +02:00
Rex P
ca5bcdc693
Add OSV-Scanner code scanning workflow ( #2350 )
...
* Add OSV-Scanner code scanning workflow
* Update code-scanning/osv-scanner.yml
Co-authored-by: Alexis Abril <alexisabril@github.com >
---------
Co-authored-by: Alexis Abril <alexisabril@github.com >
2024-04-09 22:21:33 -05:00
Josh Soref
cd4b67d0b4
Checkout: Update all workflows to use Checkout V4
2024-04-05 15:29:37 -04:00
Issy Long
607f368fb0
Merge pull request #2363 from actions/larger-runners-not-ghes
...
codeql: Clarify that hosted larger runners only exist on GHEC
2024-04-03 16:22:33 +01:00
Issy Long
31a3e00dab
codeql: Clarify that hosted larger runners only exist on GHEC
...
- Part of https://github.com/github/code-scanning/issues/13748 .
2024-04-03 10:23:11 +01:00
Charly Garcia
b53d05e4b0
ci: use artisan command to run test, because this ci/laravel.yml does not work properly in laravel when uses Pest instead of PHPUnit ( #2284 )
...
Co-authored-by: Alexis Abril <alexisabril@github.com >
2024-04-01 15:12:02 -05:00
SOOS-GSteen
efd31e5f0f
update soos dash action commit hash / sarif action version / logo ( #2317 )
...
* Update soos-dast-scan.yml
* Update soos-dast-scan.yml
* Update soos.svg
* Update code-scanning/soos-dast-scan.yml
Co-authored-by: Alexis Abril <alexisabril@github.com >
---------
Co-authored-by: Alexis Abril <alexisabril@github.com >
2024-04-01 15:11:05 -05:00
James M. Greene
e4837fa768
Improve step name for Next.js build
2024-03-29 20:19:38 -05:00
James M. Greene
eeef7a773c
Merge pull request #2360 from actions/configure-pages-v5
...
Update all Pages workflows to use `actions/configure-pages@v5`
2024-03-29 20:09:51 -05:00
James M. Greene
c9a0122a59
Update all Pages workflows to use actions/configure-pages@v5
2024-03-29 19:57:20 -05:00
Cameron Booth
e6175cb011
Merge pull request #2359 from actions/alexisabril-patch-1
...
Update CODEOWNERS
2024-03-29 15:32:18 -07:00
Alexis Abril
87efe4c91d
Update CODEOWNERS
...
Adding @actions/starter-workflows to each category to minimize notification pollution.
2024-03-29 15:20:42 -07:00
Alexis Abril
4ca845b387
Update CODEOWNERS
...
Simplifying the CODEOWNERS file to allow respective teams the capabilities to manage PRs as responsibilities have been updated recently. In the short term, this will add notifications to folks for each team.
2024-03-29 13:23:28 -07:00
James M. Greene
539cde590c
Merge pull request #2351 from cclinet/update-astro-for-yarn
...
Fix: astro.yml for yarn based project
2024-03-27 22:40:13 -05:00
James M. Greene
0ac8e61930
Merge branch 'main' into update-astro-for-yarn
2024-03-27 22:39:47 -05:00
Spencer Schrock
4620c76b38
update Scorecard Action hashes and version comments ( #2348 )
...
* update action hashes and version comments
ossf/scorecard-action v2.1.2 is old and doesnt work after a Sigstore
change. https://blog.sigstore.dev/tuf-root-update/
Signed-off-by: Spencer Schrock <sschrock@google.com >
* downgrade actions/upload-artifact to node20 version of v3
dependabot will suggest upgrade to v4.3.1 for repos that can upgrade.
note: v3.pre.node20 is how dependabot refers to the pinned hash, so
use that so it can upgrade the comment
Signed-off-by: Spencer Schrock <sschrock@google.com >
* upgrade github/codeql-action/upload-sarif to v3.24.9
Signed-off-by: Spencer Schrock <sschrock@google.com >
---------
Signed-off-by: Spencer Schrock <sschrock@google.com >
Co-authored-by: Alexis Abril <alexisabril@github.com >
2024-03-27 13:25:03 -07:00
Andreas Deininger
831e9cb8e4
Bump workflow actions of various starter files ( #2210 )
2024-03-27 10:51:41 -07:00
Marco Gario
4ccc742286
Merge pull request #2306 from actions/update_codeql_template
...
Code Scanning Update codeql.yml with new build-mode
2024-03-26 14:13:08 +01:00
Marco Gario
fdbad9c74f
Update codeql.yml
...
links to docs
2024-03-26 13:45:32 +01:00
Marco Gario
97c6254b5e
Merge branch 'main' into update_codeql_template
2024-03-26 13:35:12 +01:00
Marco Gario
aad9272438
Update codeql.yml
...
Limit matrix information in the job name to language by default
2024-03-26 13:18:17 +01:00
카기자판
61cdce264d
Updating nextjs.yml for Next.js 14 Support ( #2204 )
...
* Update nextjs.yml
* Update nextjs.yml
---------
Co-authored-by: Alexis Abril <alexisabril@github.com >
2024-03-25 16:26:55 -07:00
cclin
0f4d22325b
Update astro.yml for yarn based project
2024-03-25 16:05:58 +08:00
William Woodruff
e44c7b519f
python-publish: environment
...
Signed-off-by: William Woodruff <william@trailofbits.com >
2024-03-19 16:57:58 -04:00
William Woodruff
1fa8e18350
python-publish: copy gem-push.yml's pattern
...
Signed-off-by: William Woodruff <william@trailofbits.com >
2024-03-19 16:49:45 -04:00
William Woodruff
e230215292
python-publish: explanatory comment
...
Signed-off-by: William Woodruff <william@trailofbits.com >
2024-03-19 16:42:35 -04:00
William Woodruff
231e6b5f6f
python-publish: contents: read at toplevel
...
Signed-off-by: William Woodruff <william@trailofbits.com >
2024-03-19 16:41:37 -04:00
William Woodruff
f4c64fb836
Apply suggestions from code review
...
Co-authored-by: Sviatoslav Sydorenko (Святослав Сидоренко) <wk.cvs.github@sydorenko.org.ua >
2024-03-19 15:40:07 -04:00
William Woodruff
469c22e7a4
ci/python-publish: bump, use trusted publishing
...
Signed-off-by: William Woodruff <william@trailofbits.com >
2024-03-19 12:45:34 -04:00
Tim Heuer
3fb9f82449
Updating dotnet CI starter workflows ( #2333 )
...
* Update dotnet.yml
Updating versions
* Update dotnet-desktop.yml
Bumping versions
* Update ci/dotnet-desktop.yml
Co-authored-by: Alexis Abril <alexisabril@github.com >
---------
Co-authored-by: Alexis Abril <alexisabril@github.com >
2024-03-12 14:08:25 -05:00
Chad Bentz
03277899f0
tfsec latest v0.1.4 ( #2318 )
2024-03-06 15:46:46 -06:00
Jamie McCarthy
f2c131e699
Merge branch 'main' into jm-ci-rubyonrails
2024-03-02 07:08:37 -06:00
Marco Gario
4a8c4e08b0
Update code-scanning/codeql.yml
...
Co-authored-by: Henry Mercer <henrymercer@github.com >
2024-02-19 15:57:02 +01:00
Marco Gario
8a973982d1
Update code-scanning/codeql.yml
...
Co-authored-by: Henry Mercer <henrymercer@github.com >
2024-02-19 15:54:06 +01:00
Marco Gario
05e4581159
Update codeql.yml with new build-mode
2024-02-15 09:01:39 +01:00
Jon Janego
be552580a6
Merge pull request #2305 from bigdaz/main
...
Update for `gradle/actions@v3.1.0` release
2024-02-14 10:03:12 -06:00
daz
d303234ad7
Update for gradle/actions@v3.1.0 release
...
- Bump version hashes to use `gradle/actions/setup-gradle@v3.1.0`
- Bump version hash to use `gradle/actions/dependency-submission@v3.1.0`
2024-02-13 14:00:27 -07:00
Jamie McCarthy
4b8ca42dd9
Prefer ruby/setup-ruby@v1
...
As recommended in https://github.com/ruby/setup-ruby#setup-ruby
2024-02-12 06:59:42 -06:00
Jamie McCarthy
e4840c47d0
Spell bundle-audit without the r
...
Usage as described in https://github.com/rubysec/bundler-audit#readme
2024-02-12 06:57:18 -06:00
Jamie McCarthy
f263f7e886
Run ci/rubyonrails with bundle exec
2024-02-12 06:56:37 -06:00
Sam Partington
2b5d980659
Merge pull request #2299 from actions/dependency-review-ownership
...
Code Scanning shouldn't own `dependency-review.yml`
2024-02-09 17:37:50 +00:00
Sam Partington
813dc76266
Merge branch 'main' into dependency-review-ownership
2024-02-09 17:33:22 +00:00
Jon Janego
da7a61e43c
Merge pull request #2297 from actions/jonjanego-patch-1
...
Changing default behavior to include comment summary in PR
2024-02-07 12:19:42 -06:00
Sam Partington
c4f5db6260
Code Scanning shouldn't own dependency-review.yml
2024-02-07 17:33:08 +00:00
Jon Janego
8aab15dd49
Update code-scanning/dependency-review.yml
...
begone, whitespace
Co-authored-by: Chad Bentz <1760475+felickz@users.noreply.github.com >
2024-02-07 09:06:01 -06:00
Jon Janego
ba9d3788e4
Changing default behavior to include comment summary in PR
...
also gave the workflow the appropriate permissions required, pull-requests: write
2024-02-06 12:55:25 -06:00
SOOS-GSteen
6e4aae97ef
soos-dast-scan.yml update ( #2240 )
...
* Update soos-dast-scan.yml
* use major version syntax
* code review
* lint
* Update soos-dast-scan.yml
2024-02-06 10:44:04 -06:00
Jon Janego
aecd7f349b
Merge pull request #2290 from bigdaz/main
...
Update for `gradle/actions@v3.0.0` release
2024-01-31 16:13:33 -06:00
daz
6c7819814a
Fix typo
2024-01-31 15:07:12 -07:00
daz
51848d8b15
Remove trailing whitespace
2024-01-31 13:38:44 -07:00
daz
b0b88404ff
Improve documentation in starter workflow
...
- Remove "optional" flag from dependency-submission
- Add example of running without Gradle wrapper
- Link to action docs
2024-01-31 13:29:02 -07:00
daz
2d30c1b64c
Update for gradle/actions@v3.0.0 release
...
- Bump version hashes to use `v3.0.0` of Gradle action
- Bump to Node20-compatible versions of `actions/checkout` and `actions/setup-java`
- Replace uses of `gradle/gradle-build-action` with `gradle/actions/setup-gradle`
- Split "Setup Gradle" step out of "Run Gradle" steps
- Add separate Job using `gradle/actions/dependency-submission` (flagged as optional)
- Bump to setup JDK 17
2024-01-31 05:34:15 -07:00
Jon Janego
0753b8da50
Merge pull request #2242 from ctcampbell/patch-1
...
Update dependency-review.yml actions/checkout version, add common with: options, and add comments for dependency submission
2024-01-29 14:40:24 -06:00
Jon Janego
cea0111003
Update dependency-review.yml
...
removing extra whitespace
2024-01-29 14:38:17 -06:00
Jon Janego
c969459da2
Merge branch 'main' into patch-1
2024-01-29 14:34:36 -06:00
James M. Greene
196126a4fc
Merge pull request #2288 from actions/pages-cache-v4
...
Update all Pages workflows to `actions/cache@v4` for `node20` compliance
2024-01-29 14:29:10 -06:00
James M. Greene
fc7f47d8b0
Update all Pages workflows to actions/cache@v4 for node20 compliance
2024-01-29 14:27:36 -06:00
Cameron Booth
170651fcd5
Merge pull request #2287 from actions/jonjanego-patch-1
...
Update CODEOWNERS
2024-01-29 12:26:40 -08:00
Jon Janego
7a5fb795ed
Update CODEOWNERS
2024-01-29 14:24:42 -06:00
Jon Janego
1d205de418
Update CODEOWNERS
...
adding dependency graph team as an additional codeowner for the /code-scanning/ directory
2024-01-29 12:24:50 -06:00
Chris Campbell
e67682c31c
Add perms for comment-summary-in-pr
2024-01-29 10:09:37 +00:00
Chris Campbell
a6ab3d3f95
Update dependency-review.yml
2024-01-29 09:05:18 +00:00
Chris Campbell
f9970771a8
Update dependency-review-action to v4
2024-01-29 08:47:36 +00:00
Chris Campbell
0d8fa6f490
Add $protected-branches to pull_request target
2024-01-26 09:03:10 +00:00
Chris Campbell
0239269003
Update to match standards in actions/starter-workflows/.../pull_request_template.md
2024-01-26 09:03:10 +00:00
Chris Campbell
aa49bd3095
Tidy up comments
2024-01-26 09:03:10 +00:00
Chris Campbell
11f5772f81
Update dependency-review.yml
2024-01-26 09:03:10 +00:00
Orhan Toy
4d89c3455a
Merge pull request #2275 from aeisenberg/patch-1
...
Clarify permisions on codeql-action starter
2024-01-10 23:12:29 +01:00
Andrew Eisenberg
42326d0804
Clarify permisions on codeql-action starter
2024-01-09 12:22:16 -08:00
James M. Greene
c31fe3d5d4
Merge pull request #2266 from actions/pages/use-artifacts-v4
...
Pages: Update all workflows to use Artifacts V4
2023-12-22 13:38:44 -06:00
James M. Greene
9ca802af48
Pages: Update all workflows to use Artifacts V4
2023-12-22 13:22:30 -06:00
lsynopsys
4f4ef4e030
Synopsys Action's starter workflow ( #2234 )
...
* Synopsys action starter workflow
* Synopsys action - Address review comments
* Synopsys action - Address review comments 2
* Addressed review comments
* Fixed review comments
* Parameter changes accommodation
---------
Co-authored-by: kishorikumar <104522232+kishorikumar@users.noreply.github.com >
Co-authored-by: Alexis Abril <alexisabril@github.com >
2023-12-22 12:11:56 -06:00
Orhan Toy
a0941187cc
Merge pull request #2257 from nickfyson/patch-2
...
update codeql.yml to reference node20 actions
2023-12-14 14:01:50 +01:00
Nick Fyson
3cb56ae6f3
update codeql.yml to reference node20 actions
2023-12-14 12:21:29 +00:00
James M. Greene
71ac18ef2d
Merge pull request #2244 from actions/pages-actions-updates
...
Pages: Update core actions usage and target Node 20
2023-12-04 15:54:00 -06:00
James M. Greene
e6948282a2
Revert to Ruby 3.1 due to incompatibility issues with google-protobuf
2023-12-04 13:26:42 -06:00
James M. Greene
78e2eb137d
Update to latest Hugo version
2023-12-04 13:09:37 -06:00
James M. Greene
b90d989799
Update setup-ruby and ruby-version for Pages Jekyll workflow
2023-12-04 13:07:46 -06:00
James M. Greene
036cf7236e
Update mdBook version
2023-12-04 13:02:46 -06:00
James M. Greene
a0a25cc2d4
Pages: Update core actions usage and target Node 20
2023-12-04 12:51:37 -06:00
Marco Gario
bd7e79e8ab
Merge pull request #2243 from actions/marcogario/analyze_protected_branches_prs
...
CodeQL: Include protected branches in PR analyses
2023-12-04 12:03:16 +01:00
Marco Gario
d4b398cf2d
Include protected branches in PR analyses
2023-12-04 10:24:28 +01:00
Philip Hayton
16ea338f2a
fix: bearer does not upload sarif report ( #2178 )
...
* fix: bearer does not upload sarif report
When issues are found the exit code is non zero and so the github action aborts before uploading the sarif report.
This change fixes that issues.
* chore: update bearer.yml following review
---------
Co-authored-by: Cédric Fabianski <cfabianski@me.com >
Co-authored-by: Cédric Fabianski <cedric@bearer.com >
2023-11-22 16:01:57 -06:00
Isabelle
c6c44522f3
Update to latest audit code version ( #2209 )
...
* Update to latest audit code version
* Fix Description
* Fix extra space in comments
2023-11-13 11:49:29 -06:00
David Verdeguer
b1df8a546e
Merge pull request #2177 from actions/Daverlo-patch-1
...
Update codeql.yml
2023-10-03 09:58:14 +02:00
David Verdeguer
61f8558b81
Update codeql.yml
2023-10-03 07:40:34 +02:00
James M. Greene
1dc689b281
Merge pull request #2130 from crazy-max/update-docker-actions
...
update docker actions to latest stable
2023-09-12 19:57:44 -05:00
CrazyMax
90c598c5ab
update docker actions to latest stable
2023-09-12 15:21:04 +02:00
Jonathan Tamsut
1c61cfc44d
Merge pull request #2133 from jgoshi/dev/jgoshi/cmakeStarterWorkflowUpdates
...
Split cmake starter workflow into single/multi platform support
2023-08-10 17:05:38 -07:00
Jonathan Tamsut
836c5903ca
Merge branch 'main' into dev/jgoshi/cmakeStarterWorkflowUpdates
2023-08-10 17:05:00 -07:00
Justin Goshi (from Dev Box)
d7000e06a1
Fix errors found with CI validation checks.
2023-08-09 14:15:51 -10:00
Liela Rotschy
2bb20df369
Merge pull request #2136 from marcosdotps/reduce-icon-size
...
reduce icon size so we are faster
2023-08-07 08:25:02 -06:00
Justin Goshi (from Dev Box)
d7abf7d27d
Fix a comment
2023-08-04 14:58:59 -10:00
Justin Goshi (from Dev Box)
ed1d73eb98
Respond to PR comments
2023-08-04 06:37:11 -10:00
marcosdotps
8582d8dd0c
reduce icon size so we are faster
2023-08-04 17:01:08 +02:00
Jonathan Tamsut
147d5650d3
Merge pull request #2120 from cfabianski/add-bearer-to-code-scanning
...
feat: add Bearer code scanning option
2023-08-03 17:01:28 -07:00
Justin Goshi (from Dev Box)
34455614ec
Grammar changes
2023-08-03 12:37:25 -10:00
Justin Goshi (from Dev Box)
12e30f58ec
Address a few comments on the PR
2023-08-03 12:00:16 -10:00
Justin Goshi (from Dev Box)
357ab69839
Split cmake starter workflow single/multi plaform
2023-08-01 11:10:55 -10:00
Cédric Fabianski
9744b8f3b5
feat: add Bearer code scanning option
2023-07-17 15:30:33 +02:00
James M. Greene
f3c5d7931d
Merge pull request #2103 from EyalDelarea/main
...
Update Frogbot
2023-07-13 11:00:52 -05:00
James M. Greene
0720e7f4d0
Merge branch 'main' into main
2023-07-13 11:00:22 -05:00
James M. Greene
652258c72a
Bump frogbot to v2.10.0
2023-07-13 11:00:03 -05:00
James M. Greene
30f419feee
Merge pull request #2067 from felickz/patch-3
...
trivy starter workflow - name and runner updates
2023-07-13 10:55:57 -05:00
James M. Greene
257b26fcde
Merge branch 'main' into patch-3
2023-07-13 10:53:32 -05:00
James M. Greene
b57996bdd4
Merge pull request #2050 from Zonespace27/py-bump
...
Bumps python-package build versions
2023-07-13 10:47:06 -05:00
James M. Greene
ef768db78a
Merge branch 'main' into py-bump
2023-07-13 10:46:17 -05:00
James M. Greene
1f534a4c89
Merge pull request #2037 from jcook36605/patch-1
...
Update maven.yml
2023-07-13 10:42:45 -05:00
James M. Greene
016d708ff7
Merge branch 'main' into patch-1
2023-07-13 10:41:53 -05:00
James M. Greene
a401d62afa
Merge pull request #2019 from bigdaz/main
...
Update to v2.6.0 of gradle/gradle-build-action
2023-07-13 10:39:09 -05:00
James M. Greene
63e6ae590c
Merge branch 'main' into main
2023-07-13 10:38:20 -05:00
James M. Greene
72d4aceb2f
Bumping version to latest
2023-07-13 10:38:10 -05:00
James M. Greene
eb6b335280
Merge pull request #2033 from stepchud/main
...
Update elixir.yml - fix default build and bump version
2023-07-13 10:30:53 -05:00
James M. Greene
49efc3d27f
Update ci/elixir.yml
2023-07-13 10:30:29 -05:00
James M. Greene
cbe6296a35
Update ci/elixir.yml
2023-07-13 10:30:20 -05:00
James M. Greene
d53deb532f
Merge branch 'main' into main
2023-07-13 10:28:34 -05:00
James M. Greene
7fd5daf2e2
Merge pull request #2010 from actions/dependabot/github_actions/peter-evans/close-issue-3
...
Bump peter-evans/close-issue from 2 to 3
2023-07-13 10:15:20 -05:00
James M. Greene
79643ec927
Merge branch 'main' into dependabot/github_actions/peter-evans/close-issue-3
2023-07-13 10:12:56 -05:00
James M. Greene
e1e05e83be
Merge pull request #2048 from developer-guy/feature/avoid-script-injection
...
use intermediate environment variables to avoid risks of script injection
2023-07-13 09:58:57 -05:00
James M. Greene
749b793409
Merge branch 'main' into feature/avoid-script-injection
2023-07-13 09:51:32 -05:00
James M. Greene
a07603e5ef
Update to latest cosign versions
2023-07-13 09:51:15 -05:00
James M. Greene
4e2be7462b
Merge pull request #2087 from felickz/patch-4
...
Update Dependency Review Action to V3
2023-07-13 09:44:28 -05:00
James M. Greene
f186f33e75
Merge branch 'main' into patch-4
2023-07-13 09:43:51 -05:00
James M. Greene
7b74feb919
Merge pull request #2096 from dmitry-shibanov/v-dmshib/bump-go-1.20
...
Update setup-go and latest go versions
2023-07-13 09:42:10 -05:00
James M. Greene
346a4ffa7a
Merge branch 'main' into v-dmshib/bump-go-1.20
2023-07-13 09:41:47 -05:00
James M. Greene
b310e3e0cc
Merge pull request #1973 from felickz/patch-2
...
CodeQL - add runner size document hints
2023-07-13 09:40:11 -05:00
James M. Greene
ec351ca4a9
Delete trailing whitespace
2023-07-13 09:39:44 -05:00
James M. Greene
bbb14beb4a
Merge branch 'main' into patch-2
2023-07-13 09:37:46 -05:00
James M. Greene
d0ceca4fea
Compress the comment
2023-07-13 09:36:51 -05:00
James M. Greene
d19bb9f02a
Merge pull request #2040 from crowlKats/patch-1
...
Update denoland/setup-deno workflow
2023-07-13 09:31:41 -05:00
James M. Greene
8d23f219a7
Merge branch 'main' into patch-1
2023-07-13 09:30:40 -05:00
James M. Greene
830d0c7c9d
Add comment containing friendly version number
2023-07-13 09:30:22 -05:00
James M. Greene
5fd3f3f6e0
Merge pull request #2098 from jmooring/bump-hugo-and-dart-sass-versions
...
Update Hugo version and switch to Dart Sass
2023-07-13 09:11:01 -05:00
James M. Greene
4aa5ce6367
Merge branch 'main' into bump-hugo-and-dart-sass-versions
2023-07-13 09:10:00 -05:00
James M. Greene
e922ce0cb2
Merge pull request #2114 from some-natalie/fix-gem-push
...
move gem workflow to ruby/setup-ruby, same as ruby
2023-07-12 15:21:13 -05:00
James M. Greene
ca7dd146a8
Merge branch 'main' into fix-gem-push
2023-07-12 15:19:01 -05:00
James M. Greene
25b15b6733
Merge pull request #2111 from actions/pages-upa-v2
...
Update all Pages starter workflows to use upload-pages-artifact@v2
2023-07-12 11:39:58 -05:00
Natalie Somersall
356930494d
move gem workflow to ruby/setup-ruby, same as ruby
2023-07-12 15:25:09 +00:00
James M. Greene
0c238aec84
Update all Pages starter workflows to use upload-pages-artifact@v2
2023-07-10 23:00:03 -05:00
delarea
c4caf17ee5
Update latest commit
2023-07-03 17:30:23 +03:00
Joe Mooring
c6191f3c15
Update Hugo version and switch to Dart Sass
2023-06-20 22:39:07 -07:00
Dmitry Shibanov
fcf8a26d9d
bump go version and use single quotes
2023-06-19 11:47:56 +02:00
Chad Bentz
2402be0dd2
Update code-scanning/codeql.yml
...
Co-authored-by: Nick Liffen <nickliffen@github.com >
2023-06-15 16:46:40 -04:00
Jonathan Tamsut
0582bb6eb4
Merge pull request #2082 from IAmATeaPot418/js/endorlabs-update
...
Add Endor Labs code scanning workflow
2023-06-15 10:59:40 -07:00
Jamie Scott
03ce4e088f
Fix Linter Issues
2023-06-15 10:36:30 -07:00
Jamie Scott
ebf081c724
Merge branch 'main' into js/endorlabs-update
2023-06-15 09:17:45 -07:00
Jamie Scott
6da5a650b9
Update case and spacing
2023-06-15 09:13:08 -07:00
Jamie Scott
c6e2cb88e6
Add comments header
2023-06-15 09:11:51 -07:00
Jonathan Tamsut
d8c5f8eb3e
Merge pull request #1918 from eroullit/psalm-starter-workflow
...
Psalm starter workflow
2023-06-15 08:45:51 -07:00
Jonathan Tamsut
768f356939
Merge branch 'main' into psalm-starter-workflow
2023-06-14 11:20:12 -07:00
Jamie Scott
10d0b40d4c
Merge branch 'main' into js/endorlabs-update
2023-06-13 21:55:53 -07:00
Jonathan Tamsut
455606dd9b
Merge pull request #2091 from henrymercer/patch-1
...
CodeQL: Update autobuild comment
2023-06-13 11:05:34 -07:00
Jonathan Tamsut
fef79f799e
Merge branch 'main' into patch-1
2023-06-13 11:04:08 -07:00
Jamie Scott
018bc70643
Update endorlabs.yml
2023-06-12 19:08:58 -07:00
Jamie Scott
9988e13794
Update endorlabs.yml
2023-06-12 19:08:27 -07:00
Jamie Scott
fae93dfd03
Update endorlabs.properties.json
2023-06-12 19:05:57 -07:00
Jonathan Tamsut
d307831c5e
Merge pull request #1927 from ElizabethBarrord/add-credo-workflow
...
adding credo workflow
2023-06-12 10:50:17 -07:00
Henry Mercer
47e25f9095
CodeQL: Update autobuild comment
...
Add Swift to the list of compiled languages that autobuild will try to build.
2023-06-12 11:13:06 +01:00
Chad Bentz
82f55d00bd
Bump DR to take advantage of latest features
2023-06-08 12:08:28 -04:00
ElizabethBarrord
bb9bbc31d8
add line at eof and adding icon
2023-06-07 17:28:33 -05:00
ElizabethBarrord
64aaaf712e
Merge branch 'actions:main' into add-credo-workflow
2023-06-07 17:12:20 -05:00
Jamie Scott
ea40b7a267
Update to commit sha
2023-06-06 20:22:38 -07:00
Jamie Scott
43f7851be3
Change to specified version
2023-06-06 20:20:00 -07:00
Jamie Scott
437d407a8a
add Endor Labs
2023-06-06 16:22:48 -07:00
Issy Long
7b8ec19aaa
Merge pull request #2012 from actions/codeql-add-swift
...
Add Swift to the list of CodeQL-supported languages
2023-06-02 09:51:19 +01:00
Issy Long
5eb502afa5
Merge branch 'main' into codeql-add-swift
2023-06-02 09:50:06 +01:00
Beth Brennan
6ad4c76d4f
Merge pull request #2056 from adityasharad/patch-3
...
CodeQL: Reduce job timeout to 2h if the target language is Swift
2023-05-31 15:17:17 -04:00
Beth Brennan
3a1c3270ec
Merge branch 'main' into patch-3
2023-05-31 13:47:55 -04:00
Beth Brennan
8d2069cee7
Merge pull request #2071 from actions/elbrenn/update-codeowners
...
Update CODEOWNERS
2023-05-31 13:47:26 -04:00
Beth Brennan
ee518ae76c
Update CODEOWNERS
2023-05-31 13:38:11 -04:00
Chad Bentz
02d32ccbc2
ubuntu runner upgrade to vNext
2023-05-30 09:56:36 -04:00
Chad Bentz
5aa237a2b7
add descriptive name to trivy starter workflow
2023-05-30 09:38:22 -04:00
Aditya Sharad
b015c848b6
CodeQL: Reduce job timeout to 2h if the target language is Swift
...
Some projects observed intermittent build timeouts with Swift.
In case this happens, and our CodeQL-level mitigations do not prevent the problem, we want to avoid using up 6h of the customer's billed macOS Actions minutes (which is the default timeout), so we suggest a reduced timeout of 2h.
This value is chosen to accommodate the total job time (build + CodeQL extraction + CodeQL analysis) we expect for large Swift projects. We may choose to adjust it in future.
2023-05-22 10:10:15 -07:00
Batuhan Apaydın
b54241071a
use intermediate environment variables to avoid risks of script injection
...
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com >
2023-05-17 13:21:56 +03:00
Zonespace
ae3f875c79
Bumps python-package versions
...
Deprecates 3.8 and adds 3.11 for the python versions to build
2023-05-16 08:50:17 -07:00
Leo Kettmeir
4c95f1b7e4
Update denoland/setup-deno workflow
2023-05-03 12:17:51 +02:00
jcook36605
feb7e20c13
Update maven.yml
2023-04-28 17:23:42 -04:00
Stephen Chudleigh
2f530b0cd4
Update elixir.yml
...
Fixes the build error on the default build action and updates the Erlang/Elixir versions.
2023-04-26 01:21:31 -07:00
Beth Brennan
87fbe43482
Merge pull request #2027 from tblanarik/tblanarik/fix-starter-workflow-branch
...
Corrects the syntax for `on: push: branches:` so that the array is inline
2023-04-25 09:55:59 -04:00
Trevor Blanarik
d841affe4c
corrects the syntax for so that the array is inline
2023-04-24 15:53:48 +00:00
dependabot[bot]
f6b2d354a2
Bump peter-evans/close-issue from 2 to 3
...
Bumps [peter-evans/close-issue](https://github.com/peter-evans/close-issue ) from 2 to 3.
- [Release notes](https://github.com/peter-evans/close-issue/releases )
- [Commits](https://github.com/peter-evans/close-issue/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: peter-evans/close-issue
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-18 20:56:17 +00:00
James M. Greene
d397c60443
Merge pull request #1998 from actions/dependabot/github_actions/actions/stale-8
...
Bump actions/stale from 7 to 8
2023-04-18 15:55:41 -05:00
dependabot[bot]
d4482bb582
Bump actions/stale from 7 to 8
...
Bumps [actions/stale](https://github.com/actions/stale ) from 7 to 8.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/stale/compare/v7...v8 )
---
updated-dependencies:
- dependency-name: actions/stale
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2023-04-18 20:55:06 +00:00
Marco Gario
7493daf36d
Merge pull request #2018 from adityasharad/patch-2
...
CodeQL: Run on macOS by default if the target language is Swift
2023-04-18 20:45:14 +02:00
Marco Gario
5f39b23835
Merge branch 'main' into patch-2
2023-04-18 20:29:41 +02:00
daz
744aa3940a
Update to v2.4.2 of gradle/gradle-build-action
...
This update contains important fixes and we recommend that all
new workflows use this version.
2023-04-18 12:10:27 -06:00
James M. Greene
f930c61f6d
Merge pull request #2013 from marcospgp/patch-1
...
Update `github.event.inputs` to `inputs` in manual.yml
2023-04-18 11:21:42 -05:00
James M. Greene
1c781c4e6a
Add data type to workflow_dispatch inputs
2023-04-18 11:20:09 -05:00
Aditya Sharad
73f69c4600
CodeQL: Run on macOS by default if the target language is Swift
...
CodeQL Swift analysis is best supported on macOS.
In preparation for CodeQL supporting Swift analysis in beta,
adjust the CodeQL starter workflow template to run the `swift` matrix job on `macos-latest`, and all other matrix jobs on
`ubuntu-latest`. This does not affect the matrix itself.
2023-04-17 12:06:44 -07:00
Marcos Pereira
6a1457d1e2
Update manual.yml
2023-04-14 23:02:17 +01:00
Issy Long
b9b8227591
Add Swift to the list of CodeQL-supported languages
...
- This is in public beta.
2023-04-11 15:40:06 +01:00
James M. Greene
5f2e555056
Merge pull request #2000 from ntkme/update-setup-ruby
...
Update ruby/setup-ruby for CVE-2023-28755 and CVE-2023-28756
2023-04-05 19:09:51 -05:00
なつき
eeb9248ea6
Update ruby/setup-ruby for CVE-2023-28755 and CVE-2023-28756
2023-04-04 14:26:08 -07:00
James M. Greene
9e75fa6b32
Merge pull request #1994 from JoshuaKGoldberg/packager-manager-typo
...
chore: fix package(r) manager typo
2023-03-27 17:19:35 -05:00
James M. Greene
5f66d94535
Merge branch 'main' into packager-manager-typo
2023-03-27 17:18:00 -05:00
James M. Greene
d822156a0f
Merge pull request #1991 from actions/deploy-pages-v2
...
Update all Pages starter workflows to use actions/deploy-pages@v2
2023-03-27 17:15:35 -05:00
Josh Goldberg
b294ad2ff3
chore: fix package(r) manager typo
2023-03-27 18:14:42 -04:00
ElizabethBarrord
dda2aa56ea
Merge branch 'main' into add-credo-workflow
2023-03-24 09:23:52 -05:00
ElizabethBarrord
fc5ffa2714
removed whitespace
2023-03-24 14:14:25 +00:00
James M. Greene
f31b00f6cc
Update all Pages starter workflows to use actions/deploy-pages@v2
2023-03-20 23:25:38 -05:00
Hanxiao Liu
20496ebfca
Add workflow for Azure Function App with Gradle ( #1963 )
...
* Add starter workflow for Azure Function App with Gradle
* Mark as preview
* Fix properties for function gradle template
* Add workflow and job level permissions to function gradle template
---------
Co-authored-by: Sampark Sharma <phantsure@github.com >
2023-03-16 15:40:14 +05:30
James M. Greene
b4e97ff497
Merge pull request #1984 from actions/pages-concurrency-fix
...
Update `concurrency.cancel-in-progress` to `false` for all Pages starter workflows
2023-03-14 11:06:25 -05:00
James M. Greene
e1b880edf0
Merge branch 'main' into pages-concurrency-fix
2023-03-14 11:05:39 -05:00
James M. Greene
7116ef2cc5
Merge pull request #1983 from actions/mdbook-revisions
...
Update `mdbook.yml`, primarily to update to `actions/configure-pages@v3`
2023-03-14 11:05:13 -05:00
James M. Greene
1fe252d8d4
Merge branch 'main' into mdbook-revisions
2023-03-14 11:04:17 -05:00
James M. Greene
8f7711a857
Merge pull request #1982 from actions/mdbook-icon-style
...
Remove embedded style from mdbook.svg
2023-03-14 00:26:19 -05:00
James M. Greene
6c4877f958
Merge branch 'main' into mdbook-icon-style
2023-03-14 00:25:31 -05:00
James M. Greene
a2f0840855
Merge pull request #1958 from jongwooo/chore/replace-deprecated-command-with-environment-file
...
Replace deprecated command with environment file
2023-03-14 00:25:01 -05:00
James M. Greene
ee942792c7
Merge branch 'main' into chore/replace-deprecated-command-with-environment-file
2023-03-14 00:23:56 -05:00
James M. Greene
db26d12511
Update concurrency.cancel-in-progress to false for all Pages starter workflows
2023-03-14 00:12:22 -05:00
James M. Greene
da4f851af3
Update mdbook.yml, primarily to update to configure-pages@v3
2023-03-14 00:04:25 -05:00
Tommy Byrd
ed18ec1067
Update mdbook.svg
...
Remove embedded style tag
2023-03-13 22:39:36 -04:00
Luís Reis
6e49802a68
Update Jscrambler logo ( #1964 )
...
Co-authored-by: Luis Reis <luis.reis@jscrambler.com >
2023-03-13 18:07:25 +05:30
Omer Zidkoni
c1b76c45d4
Frogbot update ( #1980 )
...
* Update Frogbot starter workflows
* Update
* Update Frogbot starter-workflows commit hash
---------
Co-authored-by: Sampark Sharma <phantsure@github.com >
2023-03-13 16:26:25 +05:30
Sampark Sharma
01e3f8c5e5
Merge branch 'main' into patch-2
2023-03-13 16:25:35 +05:30
なつき
e46e854a21
Update jekyll workflow to use ruby 3.1 ( #1969 )
2023-03-13 16:08:16 +05:30
James M. Greene
001b284cc2
Merge pull request #1977 from actions/mdBook-casing-part-2
...
Update casing of mdBook within copy in mdbook.yml
2023-03-10 06:37:47 -06:00
James M. Greene
e6e0ebda52
Merge branch 'main' into mdBook-casing-part-2
2023-03-10 06:35:12 -06:00
Hanxiao Liu
9ab053c67b
Add workflow for Azure Web App with Gradle ( #1955 )
...
* Add starter workflow for Azure Web App with Gradle
* Use gradle build instead of assemable and mark template as preview
---------
Co-authored-by: Sampark Sharma <phantsure@github.com >
2023-03-10 11:36:31 +05:30
James M. Greene
39018ecd74
Update casing of mdBook within copy in mdbook.yml
2023-03-09 19:50:49 -06:00
Tommy Byrd
d9096dc751
Merge pull request #1975 from actions/mdbook-style
...
Use proper styling for `mdBook`
2023-03-09 19:57:39 -05:00
Tommy Byrd
add94e933c
Update mdbook.properties.json
2023-03-09 16:54:17 -05:00
Jess Bees
73ca958f99
Merge pull request #1974 from actions/pages/trim-whitespace
...
Trim whitespace on pages/mdbook.yml
2023-03-09 14:11:26 -05:00
Jess Bees
4813d8a07f
Trim whitespace on pages/mdbook.yml
2023-03-09 14:08:16 -05:00
Chad Bentz
19a9f5df85
Add runner size docs
2023-03-09 13:49:38 -05:00
Tommy Byrd
71fa2b4a86
Merge pull request #1677 from Decodetalkers/mdbook
...
feat(mdbook): add mdbook support
2023-03-09 12:55:14 -05:00
Tommy Byrd
9973a0729d
Merge branch 'main' into mdbook
2023-03-09 12:52:51 -05:00
ElizabethBarrord
07c72062df
adding commit sha to for action
2023-03-07 20:56:57 +00:00
ElizabethBarrord
f5cfb3ea9c
Update code-scanning/credo.yml
...
Co-authored-by: Sampark Sharma <phantsure@github.com >
2023-03-07 14:52:54 -06:00
Sampark Sharma
1375dc0a9d
Update comment for third party action usage ( #1960 )
...
* Update comment for third party action usage
* Update third party usage comment
* Update third party usage comment
2023-03-07 18:30:19 +05:30
Eric Fernandez
02af783829
Addition of snyk-security workflow to enable the Snyk platform from a single GitHub Action ( #1939 )
...
* Create snyk-security.properties.json
* Create snyk-security.yml
* Update snyk-security.yml
* Fix mispelling
Co-authored-by: Sampark Sharma <phantsure@github.com >
* Apply comments from PR
- Moved documentation link to the top
- Made `|| true` optional
- Added commit SHA for the Snyk GitHub Action
* Remove empty space
Co-authored-by: Sampark Sharma <phantsure@github.com >
* Remove empty space in line end
Co-authored-by: Sampark Sharma <phantsure@github.com >
* Update Categories
* Updated after running pre-commit linting
---------
Co-authored-by: Sampark Sharma <phantsure@github.com >
2023-03-07 16:22:52 +05:30
syed-imran
da484b4eb5
Update apisec-scan.yml ( #1898 )
...
Co-authored-by: Sampark Sharma <phantsure@github.com >
2023-03-04 18:12:33 +05:30
jongwooo
44ca9a5fd1
Replace deprecated command with environment file
2023-02-28 00:18:12 +09:00
ElizabethBarrord
c7f44d7163
Merge branch 'main' into add-credo-workflow
2023-02-22 09:41:49 -06:00
ElizabethBarrord
77bc6e809f
add credo properties
2023-02-22 15:39:47 +00:00
Tajinder Singh (TJ)
1d039e1607
fixed typo ( #1942 )
...
* fixed typo
* Update defender-for-devops.yml
* update to valid categories
* fixed request changes
2023-02-21 18:20:42 +05:30
Chris Carini
10f6091ee8
Update scorecard.yml with latest releases ( #1944 )
...
Update scorecard.yml with latest releases for ossf/scorecard-action & github/codeql-action/upload-sarif
2023-02-16 11:39:52 +05:30
Tajinder Singh (TJ)
62569bfea9
Add defender for devops workflow ( #1940 )
...
* Created new workflow for defender for devops
* Create defender-for-devops.properties.json
* fixed pr comments
* fixed linting issues
* fixed linting issues
* removed trailing white space
* changed from preview to v1.6.0
2023-02-15 17:57:26 +05:30
Ouvill
d31bcb967a
fix update cosign version on docker-publish.yml ( #1917 )
...
upgrade cosign version
https://github.com/sigstore/cosign/releases/tag/v1.13.1
The current version is out of date and the following error occurs
```
getting signer: getting key from Fulcio: verifying SCT: updating local metadata and targets: error updating to TUF remote mirror: tuf: invalid key
```
Co-authored-by: Sampark Sharma <phantsure@github.com >
2023-02-10 13:35:33 +05:30
Milos Pantic
5343fe6869
Change event to pull_request_target ( #1930 )
...
Co-authored-by: Sampark Sharma <phantsure@github.com >
2023-02-10 13:34:29 +05:30
Omer Zidkoni
dd99cc0733
Frogbot update ( #1925 )
...
* Update Frogbot starter workflows
* Update
* Update Frogbot starter-workflows commit hash
2023-02-08 17:49:57 +05:30
ElizabethBarrord
c26da3749c
adding credo workflow
2023-02-02 17:31:49 +00:00
Dylan Smith
ea28b603a3
Use updated Azure logo ( #1922 )
2023-01-31 17:26:30 +05:30
vitorveiga
a248253343
Add Jscrambler Code Integrity starter workflow ( #1893 )
...
* Add Jscrambler Code Integrity starter workflow
* Use hash commit
* fix: missing permissions and improve description
* chore: move to code scanning category
* chore: workflow checks review
2023-01-31 16:25:13 +05:30
Emmanuel Roullit
3a818c4910
ci: bump github actions version
...
Signed-off-by: Emmanuel Roullit <eroullit@github.com >
2023-01-27 14:13:37 +01:00
Emmanuel Roullit
f07709949e
ci: restrict starter workflow permissions
...
Signed-off-by: Emmanuel Roullit <eroullit@github.com >
2023-01-27 14:13:04 +01:00
Emmanuel Roullit
ac13a846c9
ci: remove trailing whitespaces
...
Signed-off-by: Emmanuel Roullit <eroullit@github.com >
2023-01-27 14:05:15 +01:00
Emmanuel Roullit
f35be5c494
icon: refresh psalm logo
...
Signed-off-by: Emmanuel Roullit <eroullit@github.com >
2023-01-27 13:58:39 +01:00
Sampark Sharma
63bb49fa36
Update lint.yaml ( #1915 )
2023-01-26 14:07:47 +05:30
James M. Greene
9aea24fa32
Merge pull request #1912 from actions/pages/config-v3
...
Update all Pages starter workflows to use `actions/configure-pages@v3`
2023-01-25 18:44:11 -06:00
James M. Greene
42fc277702
Merge branch 'main' into pages/config-v3
2023-01-25 18:42:42 -06:00
Robin Neatherway
b232592a62
Merge pull request #1916 from actions/rneatherway-patch-1
...
Correct indentation of "run" example
2023-01-23 17:32:27 +00:00
Robin Neatherway
d92e1f890e
Correct indentation of "run" example
2023-01-23 15:56:27 +00:00
Sampark Sharma
80edff7894
Merge branch 'main' into pages/config-v3
2023-01-23 11:14:20 +05:30
Jaiveer Katariya
8933c0e536
Update AKS Starter Workflows to Use Kubelogin ( #1911 )
...
* update sw to use kubelogin
* modified set context to use kubelogin
* whitespace issue?
* Reverting bandit file
Co-authored-by: Bishal Prasad <bishal-pdmsft@github.com >
2023-01-23 11:13:29 +05:30
Sampark Sharma
17dc1d5c37
Merge branch 'main' into pages/config-v3
2023-01-23 11:12:17 +05:30
Bishal Prasad
96f31daf69
Try to fix lint error ( #1914 )
2023-01-23 11:10:50 +05:30
James M. Greene
91513169ea
Update all Pages starter workflows to use actions/configure-pages@v3
2023-01-18 16:21:16 -06:00
Paul Hodgkinson
a3c3cf245c
Added Bandit starter workflow and properties file ( #1859 )
...
* Added Bandit starter workflow and properties file. Python security scanner, Action by a Hubber, wraps free tool
* Set icon name to one in the icons folder
* Switched to Bandit's own SVG icon
* Added workflow disclaimer
* Fixed author name
Co-authored-by: Sampark Sharma <phantsure@github.com >
2023-01-12 16:27:17 +05:30
Gabriela Gutierrez
9f245d9aba
Update 'Scorecards' occurrences to 'Scorecard' ( #1889 )
...
* Update Scorecard naming occurences
Signed-off-by: Gabriela Gutierrez <gabigutierrez@google.com >
* Update Scorecard icon naming
Signed-off-by: Gabriela Gutierrez <gabigutierrez@google.com >
* Update Scorecard workflow naming
Signed-off-by: Gabriela Gutierrez <gabigutierrez@google.com >
Signed-off-by: Gabriela Gutierrez <gabigutierrez@google.com >
Co-authored-by: Sampark Sharma <phantsure@github.com >
2023-01-03 13:49:28 +05:30
Mihai Maruseac
f95dae101b
Update SLSA generators to v1.4.0 ( #1884 )
...
Since GitHub's deprecation of `set-ouput`, the SLSA reusable workflows
needed to change. This PR updates them to the latest version.
Fixes https://github.com/slsa-framework/slsa-github-generator/issues/1302
Signed-off-by: Mihai Maruseac <mihaimaruseac@google.com >
Signed-off-by: Mihai Maruseac <mihaimaruseac@google.com >
Co-authored-by: Sampark Sharma <phantsure@github.com >
2023-01-03 13:48:37 +05:30
Sampark Sharma
28a47a7bc4
Add quotes to python version ( #1878 )
2023-01-03 13:42:22 +05:30
Sampark Sharma
df35718fbb
Merge pull request #1881 from actions/dependabot/github_actions/actions/stale-7
...
Bump actions/stale from 6 to 7
2022-12-30 16:03:09 +05:30
dependabot[bot]
2d6e0ed3ef
Bump actions/stale from 6 to 7
...
Bumps [actions/stale](https://github.com/actions/stale ) from 6 to 7.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/stale/compare/v6...v7 )
---
updated-dependencies:
- dependency-name: actions/stale
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-12-26 13:07:32 +00:00
Matt Wang
65ce1d1247
Update all pinned versions of ruby/setup-ruby to latest ( #1869 )
2022-12-20 10:22:40 +01:00
Sam Morrow
d248c347a9
Fix pre-commit lints ( #1877 )
2022-12-20 10:18:45 +01:00
Sampark Sharma
4de66f3fa6
Merge pull request #1780 from patelchandni/main
...
Starter Workflows for Azure Function App
2022-12-16 14:41:54 +05:30
Sampark Sharma
0a33ad9a30
Merge branch 'main' into main
2022-12-16 14:37:41 +05:30
Yoann Chaudet
5276b30d70
Merge pull request #1855 from jmooring/fix/hugo-download-url
...
Fix and improve Hugo starter action
2022-12-14 13:05:43 -08:00
Yoann Chaudet
79f135dabd
Merge branch 'main' into fix/hugo-download-url
2022-12-14 13:04:54 -08:00
Chris Gavin
68aed0e2d5
Merge pull request #1863 from actions/codeql-kotlin-support
...
Add Kotlin to CodeQL supported languages.
2022-12-14 13:39:06 +00:00
Joe Mooring
50c4e6f5a8
Fix and improve Hugo starter action
...
Closes #1854
2022-12-14 05:20:58 -08:00
Chris Gavin
95cee2a6f2
Add Kotlin to CodeQL supported languages.
2022-12-14 12:23:14 +00:00
Sampark Sharma
98771230b8
Merge pull request #1844 from actions/phantsure/lint-fix
...
Fix whitespace lint
2022-12-13 18:05:11 +05:30
Sampark Sharma
09f1d3bf86
Merge branch 'main' into phantsure/lint-fix
2022-12-13 18:04:36 +05:30
Sampark Sharma
ef331a6ad4
Update lint.yaml
2022-12-13 18:02:56 +05:30
Sampark Sharma
ee36d0c7c7
Merge pull request #1851 from coadaflorin/patch-1
...
Add explanation on which value to use to scan Kotlin and TypeScript
2022-12-13 18:02:18 +05:30
Sampark Sharma
c363441cf9
Merge branch 'main' into patch-1
2022-12-13 17:59:18 +05:30
Sampark Sharma
a2fbfc4076
Update lint.yaml
2022-12-13 17:58:04 +05:30
Sampark Sharma
970ed25ea6
Merge pull request #1853 from SOOS-JAlvarez/soos-dast-update
...
Update SOOS DAST Action Version
2022-12-13 17:57:23 +05:30
SOOS-JAlvarez
1006a379d3
linter
2022-12-13 08:40:14 -03:00
SOOS-JAlvarez
babc52e1e2
Merge branch 'main' into soos-dast-update
2022-12-13 08:38:36 -03:00
Sampark Sharma
af17d71f79
Merge branch 'main' into patch-1
2022-12-13 17:02:56 +05:30
Simon Engledew
dcac13eaaf
Merge pull request #1858 from actions/simon-engledew/folder-fix
...
Fix code-scanning filtering for relative paths
2022-12-13 10:42:03 +00:00
Simon Engledew
89d867e0d8
Fix code-scanning filtering for relative paths
2022-12-13 10:30:16 +00:00
SOOS-JAlvarez
5f790e392e
update soos dast to latest version
2022-12-12 16:44:33 -03:00
Florin Coada
9e27144d52
Add explanation on which value to use to scan Kotlin and TypeScript
...
Added comments explaining which values should be used if the user would like to scan Kotlin or TypeScript.
2022-12-09 15:35:44 +00:00
Sampark Sharma
d487ef2f8b
Merge pull request #1834 from datreeio/main
...
add Datree
2022-12-09 11:05:24 +05:30
hadar-co
bf83018c61
Update code-scanning/datree.yml
...
Co-authored-by: Sampark Sharma <phantsure@github.com >
2022-12-08 09:57:36 +02:00
hadar-co
eaef38b7d5
fix workflow
2022-12-08 09:56:22 +02:00
hadar-co
2fe9028318
fix workflow
2022-12-08 09:56:22 +02:00
hadar-co
b79ff384b9
add Datree
2022-12-08 09:56:22 +02:00
hadar-co
384d799f2c
add Datree
2022-12-08 09:56:22 +02:00
Sampark Sharma
1dddb856aa
Merge pull request #1850 from norwd/patch-2
...
Fixed misspelling of "privileged"
2022-12-08 11:41:34 +05:30
Sampark Sharma
1899cb6891
Fix whitespaces
2022-12-08 06:10:22 +00:00
Sampark Sharma
c1d13cba2f
Merge branch 'main' into phantsure/lint-fix
2022-12-08 11:39:46 +05:30
Sampark Sharma
fe2a386225
Update README.md
...
Co-authored-by: Anurag Chauhan <44864882+anuragc617@users.noreply.github.com >
2022-12-08 11:35:13 +05:30
Sampark Sharma
dfdb1f161c
Merge branch 'main' into patch-2
2022-12-08 11:34:06 +05:30
Sampark Sharma
59c3e642b3
Merge pull request #1849 from norwd/patch-1
...
Update Go version to 1.19
2022-12-08 11:33:51 +05:30
Y. Meyer-Norwood
7a584505f5
Fixed misspelling of "privileged"
2022-12-08 14:41:48 +13:00
Y. Meyer-Norwood
3408b65a71
Update Go version to 1.19
...
Go 1.18 will be at end of life sometime within the coming months (Q1 2023). Go 1.19 will be around until Q3 2023, by which point 1.20 will have been released.
2022-12-08 14:38:34 +13:00
Sampark Sharma
19f68c1782
Merge pull request #1804 from christophe-havard-sonarsource/main
...
SonarQube in Code Security
2022-12-07 17:58:11 +05:30
Sampark Sharma
2a767a8215
Merge branch 'main' into main
2022-12-07 17:57:29 +05:30
Christophe H
0cd0541922
added SHA to action definition
2022-12-01 17:13:18 +01:00
Christophe H
db5c5c4b5e
Apply suggestions from code review
...
Co-authored-by: Sampark Sharma <phantsure@github.com >
2022-12-01 17:08:17 +01:00
Sampark Sharma
0a3644524d
Merge pull request #1845 from actions/phantsure/sw-test
...
Add instructions to test templates
2022-12-01 15:09:18 +05:30
Sampark Sharma
bd3d623e07
Apply suggestions from code review
...
Co-authored-by: Anurag Chauhan <44864882+anuragc617@users.noreply.github.com >
2022-12-01 13:06:55 +05:30
Sampark Sharma
4f46960312
Add instructions to test templates
2022-12-01 06:55:46 +00:00
Sampark Sharma
f53db96ce1
Add supported tech stack list
2022-11-30 11:04:14 +00:00
Sampark Sharma
6adaff50c1
Fix no newline at EOF
2022-11-30 10:26:21 +00:00
Sampark Sharma
1716d2dcd6
Fix whitespace lint
2022-11-30 10:21:45 +00:00
Sampark Sharma
d4b97ff36a
Merge pull request #1823 from jorgectf/add-PR-checks
...
Add Pull Request check
2022-11-29 18:16:41 +05:30
Sampark Sharma
ec11d3549b
Check for only certain files
2022-11-29 18:13:36 +05:30
Sampark Sharma
e493e52668
Check only certain files
2022-11-29 17:48:50 +05:30
Sampark Sharma
20ac309543
Merge branch 'main' into add-PR-checks
2022-11-28 15:57:00 +05:30
James M. Greene
105959ece0
Merge pull request #1836 from actions/updated-pr-1828
...
Using Node.js 18.x for Gatsby
2022-11-23 13:24:37 -06:00
Nguyen Long Nhat
2f81287648
Using node 18
2022-11-23 13:20:10 -06:00
James M. Greene
e28e68c812
Merge pull request #1833 from actions/astro-cli-args
...
Pages: Configure Astro origin and base path using CLI arguments
2022-11-23 09:22:29 -06:00
James M. Greene
c0b2c6a52e
Merge branch 'main' into astro-cli-args
2022-11-23 09:21:22 -06:00
Sampark Sharma
5b85194cf5
Merge pull request #1830 from laurentsimon/feat/tokendoc
...
scorecard: update the token doc
2022-11-23 16:26:30 +05:30
Sampark Sharma
6d1ecbb6b2
Merge branch 'main' into feat/tokendoc
2022-11-23 12:58:17 +05:30
James M. Greene
c868fdbf8c
Pages: Configure Astro origin and base path using CLI arguments
2022-11-22 21:47:03 -06:00
James M. Greene
0c49697a90
Merge pull request #1832 from actions/update-pages-for-deprecations
...
Pages: Update Node.js-based workflows to use non-deprecated mechanism…
2022-11-22 15:05:43 -06:00
James M. Greene
c09b443000
Merge pull request #1831 from actions/fix-astro-pkg-mgr-usage
...
Astro: Update to use the detected package manager
2022-11-22 15:04:17 -06:00
James M. Greene
1ffc2dce9f
Pages: Update Node.js-based workflows to use non-deprecated mechanism for setting outputs
...
See https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
2022-11-22 13:43:51 -06:00
James M. Greene
d0d2da4fd3
Astro: Update to use the detected package manager
2022-11-22 13:38:23 -06:00
laurentsimon
edcef6ec3e
update
2022-11-22 19:23:58 +00:00
Sampark Sharma
0b745b3c26
Merge pull request #1822 from akeeman/patch-1
...
update deprecated syntax
2022-11-18 19:11:53 +05:30
jorgectf
5bc8773233
Remove pip cache
2022-11-16 01:16:46 +01:00
jorgectf
6cd7a70d9f
Add pre-commit configuration file
2022-11-16 01:05:19 +01:00
jorgectf
a749535e85
Add lint workflow
2022-11-16 01:05:10 +01:00
Arjan Keeman
a31c09a4f1
update deprecated syntax
...
see https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
2022-11-15 09:52:54 +01:00
Chandni Patel
aacfda586e
Merge branch 'main' into main
2022-11-10 09:20:51 -06:00
Sampark Sharma
15b15ef67c
Merge pull request #1811 from SOOS-JAlvarez/soosdast
...
Update SOOS DAST Action Version
2022-11-10 19:18:39 +05:30
Sampark Sharma
32f8856bb8
Merge branch 'main' into soosdast
2022-11-10 19:18:07 +05:30
Sampark Sharma
d0b6dd2af0
Merge pull request #1810 from omerzi/main
...
Update Frogbot version
2022-11-10 19:16:42 +05:30
Sampark Sharma
50e278e682
Merge branch 'main' into main
2022-11-10 19:16:05 +05:30
Sampark Sharma
ad9c866287
Merge pull request #1806 from jorgectf/jorgectf/yaml-check
...
Remove extra whitespaces
2022-11-10 19:15:01 +05:30
Sampark Sharma
cbc70bf7f9
Merge branch 'main' into jorgectf/yaml-check
2022-11-09 16:59:00 +05:30
SOOS-JAlvarez
faccf94fad
Merge branch 'main' into soosdast
2022-11-08 19:50:47 -03:00
Chandni Patel
f048bb522d
Merge branch 'main' into main
2022-11-08 13:13:28 -06:00
Chandni Patel
f92f222601
updates based on feedback
2022-11-08 13:07:25 -06:00
SOOS-JAlvarez
4050b957a2
update soos dast version
2022-11-08 15:34:49 -03:00
Omer Zidkoni
0872e2d9b2
Merge branch 'main' into main
2022-11-08 16:07:00 +02:00
Omer Zidkoni
762810aba5
Update frogbot-scan-and-fix.yml
2022-11-08 16:05:42 +02:00
Omer Zidkoni
ff2f23cb02
Update frogbot-scan-pr.yml
2022-11-08 16:05:26 +02:00
Jorge
417e1b9888
Apply suggestions from code review
...
Co-authored-by: Sampark Sharma <phantsure@github.com >
2022-11-08 14:09:19 +01:00
Sampark Sharma
e3b9c0d4bd
Merge pull request #1772 from tiagobcx/main
...
Rebrand on Checkmarx and adding action for new platform
2022-11-08 13:15:54 +05:30
Tiago Baptista
ad25137ca3
Update checkmarx.svg
2022-11-07 10:21:52 -06:00
Tiago Baptista
b76d9bd946
Merge branch 'actions:main' into main
2022-11-07 16:21:07 +00:00
Sampark Sharma
1df53abb3a
Merge pull request #1798 from apisec-inc/main
...
Updated SHA in apisec-scan.yml
2022-11-07 15:21:42 +05:30
Chandni Patel
aa953da46e
Starter workflows for Azure Functions App
2022-11-04 16:40:05 -05:00
jorgectf
0b50b4b579
Remove extra whitespaces
2022-11-04 20:45:41 +01:00
Tiago Baptista
84381b5f5c
Update checkmarx-one.properties.json
2022-11-03 17:29:01 +00:00
Tiago Baptista
c624af4424
Merge branch 'actions:main' into main
2022-11-03 17:28:00 +00:00
Christophe H
b7b94c7254
Merge branch 'main' into main
2022-11-03 11:37:14 +01:00
Christophe H
5081d15250
Rename SonarQube icon.svg to sonarqube.svg
2022-11-03 11:29:30 +01:00
Christophe H
4c8f3a77aa
Add files via upload
2022-11-03 11:28:50 +01:00
Christophe H
a5ee5608b9
Create sonarqube.properties.json
2022-11-03 11:27:23 +01:00
Christophe H
ca67faa01c
Rename sonarqube.yaml to sonarqube.yml
2022-11-03 11:25:29 +01:00
Christophe H
c7e73d7edc
Update sonarqube.yaml
2022-11-03 11:23:48 +01:00
abdul-hai-apisec
8c0420835f
Merge branch 'main' into main
2022-11-03 11:46:40 +05:30
Sampark Sharma
9a49c6d8fe
Merge pull request #1800 from lucacasonato/patch-1
...
Update denoland/setup-deno workflow
2022-11-02 16:35:24 +05:30
Sampark Sharma
7cd24aa567
Merge branch 'main' into patch-1
2022-11-02 16:34:10 +05:30
Sampark Sharma
f05aae0686
Merge pull request #1775 from pnacht/main
...
code-scanning/scorecards.yml: bump action versions/hashes, clarify comments, comment out private-repo-only permissions
2022-11-02 16:33:10 +05:30
Sampark Sharma
c828a047d7
Merge branch 'main' into main
2022-11-02 16:30:47 +05:30
Luca Casonato
7714a42d7a
Update denoland/setup-deno workflow
...
This updates the version of the denoland/setup-deno action used in ci/deno.yml starter workflow to a version that uses node16, to remove the warning about node12 workflows being deprecated.
The version updated to is the latest released version, v1.1.1: https://github.com/denoland/setup-deno/releases/tag/v1.1.1
2022-10-31 14:15:11 +01:00
Sampark Sharma
5e60d02759
Merge pull request #1782 from jhutchings1/patch-1
...
Add dependency graph for Scala
2022-10-28 16:05:07 +05:30
Sampark Sharma
5b48724dcf
Merge branch 'main' into patch-1
2022-10-28 16:03:50 +05:30
abdul-hai-apisec
c551bbef08
Merge branch 'main' into main
2022-10-28 07:53:37 +05:30
Yoann Chaudet
9bca5754a6
Merge pull request #1769 from adrianmg/patch-2
...
Add: Astro to starter workflows
2022-10-27 11:15:07 -07:00
Yoann Chaudet
f7c9f15def
Merge branch 'main' into patch-2
2022-10-27 11:14:04 -07:00
Pedro Kaj Kjellerup Nacht
21885a7e84
Update scorecard-action to 2.0.6
2022-10-27 13:22:19 +00:00
Mohammed Asif
b56cd5718e
Update apisec-scan.yml
2022-10-27 16:59:58 +05:30
Sampark Sharma
153e51bc74
Merge pull request #1789 from OliverMKing/kingoliver/update
...
Bump aks workflows to latest versions
2022-10-27 12:46:18 +05:30
Sampark Sharma
d370d40ee5
Merge branch 'main' into kingoliver/update
2022-10-27 12:45:51 +05:30
Sampark Sharma
eedc5d6207
Merge pull request #1796 from angelapwen/add-go-codeql-autobuild
...
Add Go to code scanning autobuild comment
2022-10-27 12:34:40 +05:30
Sampark Sharma
86bf54f7d3
Merge branch 'main' into add-go-codeql-autobuild
2022-10-27 12:33:39 +05:30
Sampark Sharma
09085312ff
Merge pull request #1795 from SOOS-JAlvarez/soosdast
...
Update soos-dast to latest version
2022-10-27 12:30:24 +05:30
Adrian Mato
57f76cbb16
add: astro properties
2022-10-26 19:21:14 -07:00
Adrian Mato
ae7e197e30
add: astro icon
2022-10-26 19:19:46 -07:00
Angela P Wen
c36348cbc6
Add Go to code scanning autobuild comment
2022-10-26 23:28:17 +00:00
SOOS-JAlvarez
9244e28f86
Merge branch 'main' into soosdast
2022-10-26 16:13:23 -03:00
SOOS-JAlvarez
81a4ed3748
comment about latest version
2022-10-26 16:10:52 -03:00
SOOS-JAlvarez
65cfd09f0d
update soos dast to latest version
2022-10-26 16:05:53 -03:00
Christophe H
4a1cad76c0
Added reference to documentation
2022-10-25 16:57:24 +02:00
Christophe H
f44ecbf0e2
Added comments
2022-10-25 16:29:30 +02:00
Christophe H
9d82221b3c
Create sonarqube.yaml
2022-10-25 16:23:39 +02:00
Sampark Sharma
2b2afd94e6
Merge pull request #1792 from ZscalerCWP/zscaler_update
...
update zscaler iac scan version
2022-10-25 16:43:28 +05:30
Jeevan Reddy Ragula
22a15ba10b
Merge branch 'main' into zscaler_update
2022-10-25 16:39:30 +05:30
Sampark Sharma
d21f9ff188
Merge pull request #1783 from jhutchings1/patch-2
...
Add dependency graph to Maven workflows
2022-10-25 16:37:25 +05:30
Jeevan Reddy Ragula
07aafd5fa8
Merge branch 'main' into zscaler_update
2022-10-25 16:35:19 +05:30
Sampark Sharma
ab6e38506f
Merge branch 'main' into patch-2
2022-10-25 16:34:23 +05:30
Jeevan Reddy Ragula
ee5b05445a
update zscaler iac scan version
2022-10-25 16:32:52 +05:30
Justin Hutchings
c1444385ea
Mark optional and use commit SHA
2022-10-24 15:24:40 -07:00
Justin Hutchings
cf88039404
Add optional marking
2022-10-24 15:22:49 -07:00
Justin Hutchings
03afd82920
Update to latest commit sha
2022-10-24 15:22:18 -07:00
Adrian Mato
e05fb54537
minor tweaks for consistency with other templates
2022-10-20 16:30:54 -07:00
Adrian Mato
a2272ea794
update: rename subfolder path to avoid confusion
2022-10-20 16:10:14 -07:00
Adrian Mato
4367f77de0
add: concurrency and default branch ref
2022-10-20 16:06:10 -07:00
Oliver King
a95c4f68c8
update aks workflows to latest versions
2022-10-20 15:06:21 -04:00
Tiago Baptista
cef3397932
Update checkmarx-one.yml
2022-10-20 15:14:03 +01:00
Tiago Baptista
3226c87441
Merge branch 'actions:main' into main
2022-10-20 15:13:41 +01:00
Sampark Sharma
c820ab8a1d
Merge pull request #1787 from apisec-inc/master
...
Updated the description
2022-10-20 15:52:15 +05:30
abdul-hai-apisec
1d785ace79
Merge branch 'main' into master
2022-10-20 11:32:58 +05:30
abdul-hai-apisec
7482e30dc1
Updated the description
2022-10-20 11:11:54 +05:30
Sampark Sharma
68abeab371
Merge pull request #1777 from actions/phantsure/docs-links
...
Update old documentation links
2022-10-20 09:59:19 +05:30
Sampark Sharma
61e860e3b4
Merge branch 'main' into phantsure/docs-links
2022-10-20 09:58:44 +05:30
Sampark Sharma
64c689c9b0
Merge pull request #1786 from actions/dependabot/github_actions/pozil/auto-assign-issue-1.11.0
...
Bump pozil/auto-assign-issue from 1.10.1 to 1.11.0
2022-10-18 18:20:41 +05:30
Sampark Sharma
05066a18fc
Merge branch 'main' into dependabot/github_actions/pozil/auto-assign-issue-1.11.0
2022-10-18 18:20:14 +05:30
Sampark Sharma
94ce363109
Update ci/swift.yml
...
Co-authored-by: Scott Brenner <scott@scottbrenner.me >
2022-10-18 18:19:20 +05:30
Sampark Sharma
270e225ebb
Merge pull request #1762 from nickmccurdy/patch-1
...
Add pages directory to readme
2022-10-18 18:12:35 +05:30
Sampark Sharma
0236422308
Merge branch 'main' into patch-1
2022-10-18 18:12:10 +05:30
Sampark Sharma
a337496618
Merge pull request #1725 from apisec-inc/master
...
Added starter workflow to help get started with EthicalCheck code-scanning Action
2022-10-18 18:11:29 +05:30
dependabot[bot]
e5b363612e
Bump pozil/auto-assign-issue from 1.10.1 to 1.11.0
...
Bumps [pozil/auto-assign-issue](https://github.com/pozil/auto-assign-issue ) from 1.10.1 to 1.11.0.
- [Release notes](https://github.com/pozil/auto-assign-issue/releases )
- [Commits](https://github.com/pozil/auto-assign-issue/compare/v1.10.1...v1.11.0 )
---
updated-dependencies:
- dependency-name: pozil/auto-assign-issue
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-10-17 13:53:14 +00:00
Tiago Baptista
b646c9c97c
Update checkmarx-one.yml
2022-10-17 14:24:31 +01:00
Tiago Baptista
2dc02fd408
Merge branch 'actions:main' into main
2022-10-17 14:22:56 +01:00
Nick McCurdy
9c49b9d11c
Delete Gatsby, Next, and Nuxt categories
...
https://github.com/actions/starter-workflows/pull/1762#discussion_r996963757
2022-10-17 08:31:16 -04:00
Nick McCurdy
cc5ce0b9a1
Merge branch 'main' into patch-1
2022-10-17 08:30:13 -04:00
abdul-hai-apisec
59d90c61a1
Merge branch 'main' into master
2022-10-17 17:28:32 +05:30
Justin Hutchings
1be22cecc3
Add dependency graph to Maven workflows
2022-10-13 13:24:08 -07:00
Justin Hutchings
6686f7461a
Add disclaimer
2022-10-13 13:08:31 -07:00
Justin Hutchings
8048d62634
Add dependency graph
...
Scala builds do not automatically get support for the dependency graph. This addition will upload dependency information to the dependency graph so users get Dependabot alerts.
2022-10-13 13:01:48 -07:00
Sampark Sharma
1067f16ad8
Merge pull request #1749 from actions/phantsure/pages-validate
...
Add pages templates to validate script
2022-10-13 11:04:56 +05:30
Tiago Baptista
0376d79771
Update checkmarx.svg
2022-10-12 16:48:51 +01:00
Tiago Baptista
4076f8b8da
Update checkmarx-one.yml
2022-10-12 16:20:46 +01:00
Tiago Baptista
a66a197935
Update checkmarx-one.yml
2022-10-12 16:05:01 +01:00
abdul-hai-apisec
90fcb3f10e
Added permissions
2022-10-12 20:30:11 +05:30
Aparna Ravindra
38ef6b8a65
Merge branch 'main' into phantsure/pages-validate
2022-10-12 20:29:08 +05:30
Tiago Baptista
d4e6eb5c4f
Merge branch 'actions:main' into main
2022-10-12 14:46:45 +01:00
Sampark Sharma
e1fb226eb7
Merge pull request #1512 from ZscalerCWP/main
...
Add Zscaler IaC Scan to Code Scanning
2022-10-12 19:10:05 +05:30
Jeevan Reddy Ragula
84c092807d
Merge branch 'main' into main
2022-10-12 18:57:22 +05:30
Sampark Sharma
d1768edd6c
Remove filename check
2022-10-12 13:05:05 +00:00
abdul-hai-apisec
0c07568eea
Merge branch 'main' into master
2022-10-12 14:25:29 +05:30
abdul-hai-apisec
9a9cef713d
Update ethicalcheck.yml
2022-10-12 14:21:47 +05:30
Sampark Sharma
e5cd80a284
Merge pull request #1778 from actions/dependabot/github_actions/pozil/auto-assign-issue-1.10.1
...
Bump pozil/auto-assign-issue from 1.10.0 to 1.10.1
2022-10-12 13:55:43 +05:30
Pedro Kaj Kjellerup Nacht
e9fd3bc4fb
Update versions/hashes
2022-10-10 15:48:40 +00:00
dependabot[bot]
eaf0ed4a08
Bump pozil/auto-assign-issue from 1.10.0 to 1.10.1
...
Bumps [pozil/auto-assign-issue](https://github.com/pozil/auto-assign-issue ) from 1.10.0 to 1.10.1.
- [Release notes](https://github.com/pozil/auto-assign-issue/releases )
- [Commits](https://github.com/pozil/auto-assign-issue/compare/v1.10.0...v1.10.1 )
---
updated-dependencies:
- dependency-name: pozil/auto-assign-issue
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-10-10 14:19:44 +00:00
Sampark Sharma
988cccd442
Update old documentation links
2022-10-10 11:12:22 +00:00
Pedro Kaj Kjellerup Nacht
493117b705
Add disclaimer requested in PR template
2022-10-07 18:22:49 +00:00
Pedro Kaj Kjellerup Nacht
d668c4cb8b
Clarify comments in scorecard.yml
2022-10-07 18:04:54 +00:00
Jeevan Reddy Ragula
97b3375ee8
Merge branch 'main' into main
2022-09-30 23:30:46 +05:30
Sampark Sharma
51e3d515e9
Merge pull request #1687 from actions/dependabot/npm_and_yarn/script/validate-data/actions/core-1.9.1
...
Bump @actions/core from 1.2.6 to 1.9.1 in /script/validate-data
2022-09-30 18:00:34 +05:30
dependabot[bot]
c4a90daee9
Bump @actions/core from 1.2.6 to 1.9.1 in /script/validate-data
...
Bumps [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core ) from 1.2.6 to 1.9.1.
- [Release notes](https://github.com/actions/toolkit/releases )
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/core/RELEASES.md )
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/core )
---
updated-dependencies:
- dependency-name: "@actions/core"
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-09-30 12:29:54 +00:00
Sampark Sharma
4d9a9c39d7
Merge pull request #1773 from IvanZosimov/setup-dotnet-v3
...
Update starter-workflows to use setup-dotnet@v3
2022-09-30 17:51:11 +05:30
Jeevan Reddy Ragula
5db0445ab0
Merge branch 'main' into main
2022-09-30 17:11:26 +05:30
Ivan
9430145310
Update dotnet.yml to use setup-dotnet@v3
2022-09-30 10:33:07 +02:00
Ivan
3c68ea5b08
Update dotnet-desktop.yml to use setup-dotnet@v3
2022-09-30 10:32:25 +02:00
Adrian Mato
61b58c843f
Update pages/astro.yml
...
Co-authored-by: Yoann Chaudet <yoannchaudet@github.com >
2022-09-29 15:22:03 -07:00
Tiago Baptista
3031cebead
Update checkmarx.svg
2022-09-29 11:35:25 +01:00
Tiago Baptista
4d24769f48
Update checkmarx.svg
2022-09-29 11:33:34 +01:00
Tiago Baptista
b2113622be
Add new properties file for Checkmarx
2022-09-29 11:32:56 +01:00
Tiago Baptista
4193b3bdfd
Adding new yaml file with action example
2022-09-29 11:32:20 +01:00
Sampark Sharma
ba77264174
Merge pull request #1624 from ksaunders/nowsecure-sbom
...
Add NowSecure Mobile SBOM starter workflow
2022-09-29 15:24:20 +05:30
Keegan Saunders
13ccf721fe
Add NowSecure Mobile SBOM starter workflow
2022-09-28 11:25:15 -04:00
Sampark Sharma
7bc6d15b95
Merge pull request #1761 from mthibeau73/zscan-workflow
...
Add Zimperium zScan starter workflow
2022-09-28 16:53:06 +05:30
Sampark Sharma
4cda36b85e
Merge branch 'main' into zscan-workflow
2022-09-28 16:52:21 +05:30
Adrian Mato
61aa8be816
Paths not enabled by default
2022-09-27 21:22:38 -07:00
Adrian Mato
10798e7d81
Add: Astro to starter workflows
2022-09-27 21:19:54 -07:00
Jeevan Reddy Ragula
e2ea54e6b2
Merge branch 'main' into main
2022-09-27 11:16:38 +05:30
Sampark Sharma
ac16de159b
Merge pull request #1697 from kzantow-anchore/update-anchore-grype-scan-workflow
...
Update Anchore Grype scan action
2022-09-27 11:03:02 +05:30
Jeevan Reddy Ragula
6cf9b88b40
Merge branch 'main' into main
2022-09-27 10:00:13 +05:30
Matt Thibeau
1b10f88e66
Merge branch 'main' into zscan-workflow
2022-09-26 10:17:40 -05:00
Keith Zantow
022ac9babb
Update Anchore Grype scan action workflow
2022-09-26 10:33:41 -04:00
Sampark Sharma
78f3cc56eb
Merge pull request #1768 from actions/dependabot/github_actions/actions/stale-6
...
Bump actions/stale from 5 to 6
2022-09-26 19:14:09 +05:30
dependabot[bot]
5f2c1d104d
Bump actions/stale from 5 to 6
...
Bumps [actions/stale](https://github.com/actions/stale ) from 5 to 6.
- [Release notes](https://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/stale/compare/v5...v6 )
---
updated-dependencies:
- dependency-name: actions/stale
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-09-26 13:32:49 +00:00
Sampark Sharma
69a2669b42
Merge pull request #1764 from gabibguti/patch-1
...
Update OpenSSF Scorecard workflow: Remove trailing whitespaces
2022-09-26 12:17:38 +05:30
Sampark Sharma
ff1e785cc6
Merge branch 'main' into patch-1
2022-09-26 12:17:07 +05:30
Sampark Sharma
f3c9d76bfb
Merge branch 'main' into zscan-workflow
2022-09-26 12:07:47 +05:30
Sampark Sharma
35f9f14d52
Merge pull request #1736 from soos-io/soos-dast-instructions-update
...
Updated old instructions to add more detail
2022-09-26 11:24:11 +05:30
Gabriela Gutierrez
aa0375afbf
Remove trailing whitespaces
2022-09-23 18:04:56 -03:00
Nick McCurdy
84ca712b31
Merge branch 'main' into patch-1
2022-09-23 11:43:17 -04:00
Nick McCurdy
3f6632a2ae
Remove redundant languages
2022-09-23 11:42:07 -04:00
mthibeau73
13ad0bf0ae
lowercase iconName in properties file
2022-09-23 10:32:47 -05:00
Eric Allard
4ea828e600
Merge branch 'main' into soos-dast-instructions-update
2022-09-23 10:12:44 -04:00
Anurag Chauhan
3275bc0b60
Merge pull request #1741 from actions/revert-1739-Phantsure-patch-1
...
Revert "Adding manual trigger to sync ghes script"
2022-09-23 14:09:28 +05:30
Sampark Sharma
e7de54a4b8
Merge branch 'main' into revert-1739-Phantsure-patch-1
2022-09-23 13:34:44 +05:30
Nick McCurdy
6a3b2bbd2e
Add pages directory to readme
2022-09-22 10:46:38 -04:00
Sampark Sharma
7f48f72151
Merge pull request #1760 from actions/nickfyson/fix-ghes-sync
...
fix trigger for ghes sync
2022-09-22 17:16:05 +05:30
Sampark Sharma
cfdb8c956f
Merge branch 'main' into nickfyson/fix-ghes-sync
2022-09-22 17:14:33 +05:30
Sampark Sharma
2b294c8c36
Merge pull request #1759 from simon-engledew/simon-engledew/flip-workflow-check
...
Make enterprise opt-in instead of opt-out
2022-09-22 17:05:04 +05:30
Sampark Sharma
6ebd837ea9
Merge branch 'main' into simon-engledew/flip-workflow-check
2022-09-22 17:00:20 +05:30
Sampark Sharma
bc0e5b9044
Merge pull request #1756 from developer-guy/main
...
chore: upgrade cosign-installer version to latest
2022-09-22 16:58:21 +05:30
Sampark Sharma
e39c763ea2
Merge branch 'main' into main
2022-09-22 15:58:54 +05:30
mthibeau73
e1512d3916
Add Zimperium zScan starter workflow
2022-09-21 14:24:09 -05:00
Simon Engledew
da2e9558af
Only use enterprise check for code-scanning folder
2022-09-21 16:07:04 +01:00
Nick Fyson
d75ca7ac2e
fix trigger for ghes sync
2022-09-21 16:04:36 +01:00
Isa Vilacides
fcb996aeb2
Merge branch 'main' into simon-engledew/flip-workflow-check
2022-09-21 16:53:14 +02:00
Nick Fyson
c3bd28fcd6
Merge pull request #1757 from simon-engledew/patch-1
...
Hide ESLint on GHES
2022-09-21 15:51:31 +01:00
Simon Engledew
23737db306
Make enterprise opt-in instead of opt-out
2022-09-21 15:45:41 +01:00
Simon Engledew
6b52b98767
Hide ESLint on GHES
2022-09-21 12:46:14 +01:00
Sampark Sharma
6562f83775
Merge branch 'main' into main
2022-09-21 12:15:59 +05:30
Sampark Sharma
a4ed1faa48
Merge pull request #1755 from omerzi/main
...
Update JFrog Frogbot's version
2022-09-21 12:15:49 +05:30
Sampark Sharma
772b8bf9dd
Merge branch 'main' into main
2022-09-21 12:14:20 +05:30
Sampark Sharma
4084b92a65
Merge pull request #1753 from actions/docker-cache
...
Enable caching by default for docker builds.
2022-09-21 12:13:12 +05:30
Batuhan Apaydın
a50f9361bc
chore: upgrade cosign-installer version to latest
...
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com >
2022-09-20 20:02:09 +03:00
omerzi
bdee68f571
Update JFrog Frogbot's Version
2022-09-20 16:39:01 +03:00
omerzi
e7e1dc2037
Update Frogbot's version
2022-09-20 16:36:24 +03:00
Sampark Sharma
af733fded0
Address comments
2022-09-20 12:51:33 +00:00
Sampark Sharma
1a46538eaa
Keep both unique template name and filename logic
2022-09-20 11:43:05 +00:00
Chris Patterson
4bb0cbfc9e
Enable caching by default for docker builds.
2022-09-20 10:25:45 +05:30
Sampark Sharma
95057f2418
Update logic from unique template name to filename
2022-09-19 11:45:31 +00:00
Sampark Sharma
1707d7842a
Merge branch 'main' into phantsure/pages-validate
2022-09-19 16:44:08 +05:30
Sampark Sharma
e21652daaa
Merge pull request #1752 from actions/rename-jekyll
...
Clear name conflict
2022-09-19 16:43:20 +05:30
Yoann Chaudet
cd26daf9c2
Clear name conflict
2022-09-16 15:05:57 -07:00
Sampark Sharma
3bc0ad0b1d
Add pages templates to validate script
2022-09-16 10:51:50 +00:00
Sampark Sharma
941a823212
Merge pull request #1745 from actions/phantsure/pr-template
...
Update pull_request_template.md
2022-09-16 16:02:18 +05:30
Sampark Sharma
491fee5504
Merge branch 'main' into phantsure/pr-template
2022-09-16 16:00:59 +05:30
Sampark Sharma
a0ea36065b
Merge pull request #1748 from actions/codeql-category
...
Update CodeQL to include category by default
2022-09-16 15:34:37 +05:30
Sampark Sharma
67e9e6e817
Merge branch 'main' into codeql-category
2022-09-16 15:33:47 +05:30
Sampark Sharma
ac20dcc33b
Merge pull request #1746 from azeemshaikh38/patch-1
...
Update to scorecard-action:v2.0.3
2022-09-16 14:57:39 +05:30
Sampark Sharma
a2618651d7
Merge branch 'main' into patch-1
2022-09-16 14:55:33 +05:30
Marco Gario
cb341b59ed
Update CodeQL to include category by default
...
Code Scanning can accept multiple uploads for the same tool and uses the concept of category to keep results separated.
If not provided explicitly, the category is computed based on a few parameters like workflow path and matrix variables. The implicit computation of the category can create confusion if users change their workflow, as we start considering the new analyses as unrelated to existing results.
By making the category explicit in the workflow we hope to make the concept more prominent and reduce accidental changes.
2022-09-16 09:25:07 +02:00
Sampark Sharma
5398a2190f
Merge pull request #1747 from felickz/upload-sarif-permissions
...
Starter Workflows Failing on Private Repositories - add actions: read permission when using upload-sarif
2022-09-15 12:13:39 +05:30
Chad Bentz
568b096f39
add actions: read to any job using upload-sarif
2022-09-14 18:17:28 -04:00
Azeem Shaikh
81fe53796f
Update to scorecard-action:v2.0.3
...
Includes bug fixes
2022-09-14 09:37:06 -04:00
Sampark Sharma
96389955e3
Update pull_request_template.md
2022-09-14 16:53:35 +05:30
Sampark Sharma
f6c8c7e589
Merge pull request #1744 from actions/phantsure/setup-python
...
Add setup-python to list of enabledActions for ghes
2022-09-14 16:26:44 +05:30
Sampark Sharma
94ce275060
Add setup-python to list of enabledActions for ghes
2022-09-14 15:55:59 +05:30
Sampark Sharma
e6dbb5d9fb
Merge pull request #1740 from actions/phantsure/ghes-script-update
...
Add actions/cache to list of enabledActions
2022-09-14 12:21:08 +05:30
Sampark Sharma
723f3e411d
Revert "Adding manual trigger to sync ghes script"
2022-09-14 12:18:02 +05:30
Sampark Sharma
864be6fc0f
Add actions/cache to list of enabledActions
2022-09-14 12:16:25 +05:30
Sampark Sharma
e97b0abf15
Merge pull request #1739 from actions/Phantsure-patch-1
...
Adding manual trigger to sync ghes script
2022-09-14 12:12:09 +05:30
Sampark Sharma
6763818232
Update sync-ghes.yaml
2022-09-14 11:52:08 +05:30
Sampark Sharma
ab79753c19
Merge pull request #1738 from A-Katopodis/main
...
Updated powershell to v1.1 commit
2022-09-14 11:46:30 +05:30
Sampark Sharma
291ef0f102
Merge branch 'main' into main
2022-09-14 11:45:39 +05:30
Sampark Sharma
ba4b7b88b5
Merge pull request #1737 from actions/phantsure/ghes-pages
...
Add pages to ghes sync script
2022-09-14 11:41:40 +05:30
A-Katopodis
cf9b684433
Updated powershell to v1.1 commit
2022-09-13 13:14:35 -05:00
Sampark Sharma
e5cdae6f10
Update settings.json
2022-09-13 17:56:10 +05:30
Sampark Sharma
1a784af20d
Update settings.json
2022-09-13 17:54:12 +05:30
Sampark Sharma
9f38fedfd9
Merge pull request #1735 from davelosert/node-18
...
Adds Node 18 and removes Node 12
2022-09-12 11:35:33 +05:30
Eric Allard
2426779103
Updated old instructions to add more detail
2022-09-09 15:00:01 -04:00
David Losert
f539d47469
Adds Node 18 and removes Node 12
2022-09-09 17:57:59 +02:00
Sampark Sharma
3e10d18ba7
Merge pull request #1732 from naveensrinivasan/naveen/feat/upgrade-scorecard-action
...
Upgraded scorecard action to v2.0.0
2022-09-09 16:12:16 +05:30
Jeevan Reddy Ragula
f3d8f1331d
Merge branch 'main' into main
2022-09-09 11:26:55 +05:30
naveensrinivasan
2333616c7d
Upgraded scorecard action to v2.0.0
...
- Upgraded scorecard action to v2.0.0
https://github.com/ossf/scorecard-action/commit/13ec8c77e8a5dae7e0a0d47bde3e3004df15d34f
Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com >
2022-09-08 09:37:44 -05:00
Sampark Sharma
5245605553
Merge pull request #1621 from shaopeng-gh/users/shaopeng-gh/lintr
...
Add lintr starter workflow
2022-09-08 18:08:38 +05:30
Shaopeng
f187f4a712
Merge branch 'main' into users/shaopeng-gh/lintr
2022-09-06 04:32:06 -07:00
Sampark Sharma
76d8ad3920
Merge pull request #1639 from laurentsimon/release/generic
...
OSSF SLSA generic generator
2022-09-06 16:49:25 +05:30
Sampark Sharma
6db273fac3
Merge branch 'main' into release/generic
2022-09-06 16:48:50 +05:30
Sampark Sharma
af921a6837
Merge pull request #1724 from austenstone/main
...
branches: [ `$default-branch` ]
2022-09-06 16:20:58 +05:30
Sampark Sharma
2184ca2468
Merge branch 'main' into main
2022-09-06 16:19:26 +05:30
Sampark Sharma
35a04a5688
Merge pull request #1718 from omerzi/main
...
Update JFrog Frogbot permissions and Tag
2022-09-06 16:16:59 +05:30
Omer Zidkoni
7744fcb103
Merge branch 'main' into main
2022-09-06 09:28:31 +03:00
abdul-hai-apisec
44f6e35784
Merge branch 'main' into master
2022-09-05 11:09:02 +05:30
James M. Greene
a0becf432a
Merge pull request #1723 from coliff/patch-1
...
use latest version of Hugo
2022-09-02 17:34:18 -05:00
James M. Greene
4b48da2252
Update Hugo to truly latest
2022-09-02 17:32:30 -05:00
Christian Oliff
b12833e671
use latest version of Hugo
2022-09-01 20:55:14 +09:00
Sampark Sharma
8217436fde
Merge pull request #1722 from actions/dependabot/github_actions/kentaro-m/auto-assign-action-1.2.2
...
Bump kentaro-m/auto-assign-action from 1.2.1 to 1.2.2
2022-09-01 17:19:17 +05:30
Sampark Sharma
dc02d12c06
Merge branch 'main' into dependabot/github_actions/kentaro-m/auto-assign-action-1.2.2
2022-09-01 17:18:29 +05:30
Sampark Sharma
8b9ccbee10
Merge pull request #1702 from actions/setup-ruby-latest
...
Update all usages of `ruby/setup-ruby` to latest
2022-09-01 17:06:09 +05:30
Sampark Sharma
3e8e8ddac6
Merge branch 'main' into setup-ruby-latest
2022-09-01 17:05:15 +05:30
Sampark Sharma
2de727f962
Merge pull request #1695 from laurentsimon/patch-3
...
Update comments for renovatebot
2022-09-01 16:55:23 +05:30
Sampark Sharma
f7ed64edb9
Merge branch 'main' into patch-3
2022-09-01 16:54:27 +05:30
abdul-hai-apisec
d14e8af6e3
Added EthicalCheck Action
2022-08-30 21:45:04 +05:30
Austen Stone
a4af1b700b
branches
2022-08-30 10:13:31 -04:00
Jeevan Reddy Ragula
5cb80783ab
Merge branch 'main' into main
2022-08-30 18:01:42 +05:30
dependabot[bot]
d13b97ea29
Bump kentaro-m/auto-assign-action from 1.2.1 to 1.2.2
...
Bumps [kentaro-m/auto-assign-action](https://github.com/kentaro-m/auto-assign-action ) from 1.2.1 to 1.2.2.
- [Release notes](https://github.com/kentaro-m/auto-assign-action/releases )
- [Commits](https://github.com/kentaro-m/auto-assign-action/compare/v1.2.1...v1.2.2 )
---
updated-dependencies:
- dependency-name: kentaro-m/auto-assign-action
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-08-29 13:44:15 +00:00
Omer Zidkoni
e5fe15a10e
Merge branch 'main' into main
2022-08-28 16:09:26 +03:00
omerzi
2f880ea2a2
Update Frogbot permissions and Tag
2022-08-28 16:07:58 +03:00
James M. Greene
9d734850ef
Update all usages of ruby/setup-ruby to latest
2022-08-25 23:42:31 -05:00
James M. Greene
edae9e95bf
Merge pull request #1688 from actions/use-configure-pages-v2
...
Update Pages starter workflows to use `actions/configure-pages@v2`
2022-08-25 23:33:28 -05:00
James M. Greene
0836e51ad1
Merge branch 'main' into use-configure-pages-v2
2022-08-25 23:29:34 -05:00
James M. Greene
8d0b0161a7
Merge pull request #1700 from actions/treat-ruby-action-cautiously
...
Pages: Bring use of `ruby/setup-ruby` into compliance
2022-08-25 23:29:22 -05:00
James M. Greene
0d82602f17
Add optional quotes to Hugo CLI baseURL
2022-08-25 22:46:48 -05:00
James M. Greene
4687f80a64
Merge branch 'main' into use-configure-pages-v2
2022-08-25 22:45:10 -05:00
James M. Greene
5b0989e042
Pages: Bring use of ruby/setup-ruby into compliance
2022-08-25 10:24:32 -05:00
laurentsimon
a640bca95a
Merge branch 'main' into patch-3
2022-08-24 09:22:57 -07:00
Sampark Sharma
9d8124219f
Merge pull request #1644 from omerzi/main
...
Add JFrog Frogbot starter workflows
2022-08-24 18:17:07 +05:30
Omer Zidkoni
502b4caa95
Merge branch 'main' into main
2022-08-24 15:42:45 +03:00
Omer Zidkoni
bb6277cf2a
Update frogbot-scan-pr.properties.json
2022-08-24 15:42:10 +03:00
Omer Zidkoni
cdcdda3a89
Update frogbot-scan-and-fix.properties.json
2022-08-24 15:41:50 +03:00
Sampark Sharma
49e78a57c2
Merge pull request #1693 from actions/dependabot/github_actions/pozil/auto-assign-issue-1.10.0
...
Bump pozil/auto-assign-issue from 1.9.0 to 1.10.0
2022-08-24 17:52:12 +05:30
Sampark Sharma
cdc50e2ae0
Merge branch 'main' into dependabot/github_actions/pozil/auto-assign-issue-1.10.0
2022-08-24 17:51:26 +05:30
Omer Zidkoni
4ff0836aed
Merge branch 'main' into main
2022-08-24 10:38:30 +03:00
James M. Greene
9f451f5152
Merge branch 'main' into use-configure-pages-v2
2022-08-23 13:56:39 -05:00
James M. Greene
92e06f477c
Merge pull request #1694 from MilanAryal/patch-1
...
Pages: Set Jekyll environment as production
2022-08-23 13:48:24 -05:00
James M. Greene
652d758c27
Merge branch 'main' into patch-1
2022-08-23 13:44:40 -05:00
Omer Zidkoni
5fd9f56689
Update frogbot-scan-pr.yml
2022-08-23 16:56:36 +03:00
Omer Zidkoni
77485a55d0
Update frogbot-scan-and-fix.yml
2022-08-23 16:56:22 +03:00
Omer Zidkoni
c61f33a701
Merge branch 'main' into main
2022-08-23 11:21:25 +03:00
Omer Zidkoni
f4c529ed9f
Update frogbot-scan-and-fix.yml
2022-08-23 11:17:52 +03:00
Omer Zidkoni
27a76bc269
Update frogbot-scan-pr.yml
2022-08-23 11:17:35 +03:00
James M. Greene
f2c9987d05
Merge branch 'main' into use-configure-pages-v2
2022-08-22 18:31:01 -05:00
James M. Greene
0acc995eec
Merge pull request #1696 from actions/hugo-production-take2
...
Pages: Explicitly set Hugo environment variables as production
2022-08-22 18:29:05 -05:00
James M. Greene
bff759f503
Clarify './_site' directory usage
2022-08-22 16:44:53 -05:00
James M. Greene
709400e808
Set HUGO_ENV* env vars instead of CLI flag
...
Reverts https://github.com/actions/starter-workflows/pull/1689
Fixes https://github.com/actions/starter-workflows/issues/1683
2022-08-22 16:13:12 -05:00
James M. Greene
f51ed1e63b
Merge branch 'main' into use-configure-pages-v2
2022-08-22 14:39:57 -05:00
James M. Greene
ac5313d9a6
Merge pull request #1689 from actions/pages-hugo-production
...
Pages: Explicitly set Hugo environment as production
2022-08-22 14:38:23 -05:00
James M. Greene
0d3c129311
Add missing backslash for multi-line continuation
...
Co-authored-by: Yoann Chaudet <yoannchaudet@github.com >
2022-08-22 14:37:34 -05:00
laurentsimon
5ab15a7349
Update scorecards.yml
2022-08-22 12:13:18 -07:00
Milan Aryal
467b0208ed
Pages: Set Jekyll environment as production
2022-08-22 21:30:03 +05:45
dependabot[bot]
6d0b6c7b27
Bump pozil/auto-assign-issue from 1.9.0 to 1.10.0
...
Bumps [pozil/auto-assign-issue](https://github.com/pozil/auto-assign-issue ) from 1.9.0 to 1.10.0.
- [Release notes](https://github.com/pozil/auto-assign-issue/releases )
- [Commits](https://github.com/pozil/auto-assign-issue/compare/v1.9.0...v1.10.0 )
---
updated-dependencies:
- dependency-name: pozil/auto-assign-issue
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-08-22 13:27:01 +00:00
ShootingStarDragons
71b1a7c99f
feat(mdbook): add mdbook support
...
Log: add mdbook support
2022-08-20 10:58:17 +08:00
James M. Greene
c7c674d47e
Pages: Explicitly set Hugo environment as production
2022-08-19 11:28:44 -05:00
James M. Greene
8e45e8f5fb
Remove unused step ID from a few Pages workflows
2022-08-19 10:17:23 -05:00
James M. Greene
a935168dbb
Add a trailing slash back into the Hugo starter workflow for maximum backward compatibility with themes
2022-08-19 10:15:25 -05:00
James M. Greene
4a6ec1eed2
Update Pages starter workflows to use actions/configure-pages@v2
2022-08-19 09:45:08 -05:00
Sampark Sharma
8a95669da9
Merge pull request #1684 from actions/Phantsure-patch-1
...
Update CODEOWNERS to have pages team
2022-08-18 17:56:25 +05:30
Sampark Sharma
dc77db1892
Update CODEOWNERS to have pages team
2022-08-18 12:49:49 +05:30
omerzi
99ec1c5edc
Merge remote-tracking branch 'origin/main'
2022-08-17 15:29:30 +03:00
omerzi
4d18310e04
added read permissions for private repos
2022-08-17 15:29:22 +03:00
Sampark Sharma
6c1df3421e
Merge pull request #1681 from Dylan-Rinker/patch-1
...
Update clj-holes.yml
2022-08-17 17:27:54 +05:30
Sampark Sharma
571a01b0f9
Merge branch 'main' into patch-1
2022-08-17 17:01:05 +05:30
Sampark Sharma
bd8c7d1a00
Merge pull request #1630 from kzantow-anchore/add-anchore-sbom-action-workflow
...
Add Anchore Syft SBOM scan workflow
2022-08-17 17:00:35 +05:30
omerzi
041d5f964c
Merge remote-tracking branch 'origin/main'
...
# Conflicts:
# code-scanning/frogbot-scan-pr.yml
2022-08-17 09:42:28 +03:00
omerzi
a82c7d200a
Code review changes
2022-08-17 09:41:13 +03:00
Keith Zantow
65d796c94f
Add Anchore Syft SBOM scan workflow
2022-08-16 12:47:02 -04:00
Dylan Rinker
b206471e4d
Update clj-holes.yml
...
- Fixed a typo in the upload-sarif@v1 action
- Commented out the rules-repository. The template will now default to rules in git://clj-holmes/clj-holmes-rules#main, but the format is preserved.
2022-08-16 09:24:41 -04:00
Sampark Sharma
e03baab3aa
Merge pull request #1671 from kachick/refer-stable-tag-of-deploy-pages
...
Refer `actions/deploy-pages` stable tag in `pages/static`
2022-08-16 18:25:43 +05:30
Sampark Sharma
63ebe9fb1e
Merge branch 'main' into refer-stable-tag-of-deploy-pages
2022-08-16 18:25:07 +05:30
Sampark Sharma
e7eaeb34db
Merge pull request #1670 from actions/Phantsure-patch-1
...
Fix PR auto assign
2022-08-16 18:12:19 +05:30
laurentsimon
6f7030b18a
update
2022-08-11 13:32:40 +00:00
laurentsimon
aec987bfb5
comments
2022-08-11 13:32:40 +00:00
laurentsimon
30f1eecad1
update
2022-08-11 13:32:40 +00:00
laurentsimon
026c540730
update
2022-08-11 13:32:40 +00:00
laurentsimon
19e6b35e84
update
2022-08-11 13:32:40 +00:00
laurentsimon
c81201dd62
update
2022-08-11 13:32:40 +00:00
laurentsimon
0f26631ba6
update
2022-08-11 13:32:40 +00:00
laurentsimon
67805723f0
update
2022-08-11 13:32:40 +00:00
Kenichi Kamiya
9bdc3e7253
Refer actions/deploy-pages stable tag in pages/static
2022-08-11 03:05:57 +09:00
Omer Zidkoni
2e9d587941
Merge branch 'main' into main
2022-08-10 17:56:25 +03:00
Sampark Sharma
aa797da6b2
Fix PR assign
2022-08-10 18:19:19 +05:30
Sampark Sharma
1c7042ea97
Merge pull request #1668 from actions/dependabot/github_actions/pozil/auto-assign-issue-1.9.0
...
Bump pozil/auto-assign-issue from 1.8.0 to 1.9.0
2022-08-10 17:11:22 +05:30
dependabot[bot]
552d98b770
Bump pozil/auto-assign-issue from 1.8.0 to 1.9.0
...
Bumps [pozil/auto-assign-issue](https://github.com/pozil/auto-assign-issue ) from 1.8.0 to 1.9.0.
- [Release notes](https://github.com/pozil/auto-assign-issue/releases )
- [Commits](https://github.com/pozil/auto-assign-issue/compare/v1.8.0...v1.9.0 )
---
updated-dependencies:
- dependency-name: pozil/auto-assign-issue
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-08-08 13:23:06 +00:00
omerzi
e35bb09c20
Code review changes
2022-08-07 09:32:25 +03:00
Omer Zidkoni
6d73827c98
Merge branch 'actions:main' into main
2022-08-07 09:26:06 +03:00
Yoann Chaudet
9f33f37c56
Merge pull request #1649 from actions/pages/cleanup
...
Address feedback from PR #1645
2022-08-04 12:54:22 -07:00
Yoann Chaudet
095efcc4ae
more metadata
2022-08-01 06:34:01 -07:00
Omer Zidkoni
b49efc72fc
Merge branch 'main' into main
2022-07-31 09:58:17 +03:00
Yoann Chaudet
e262f54fe9
Address feedback
2022-07-28 18:39:43 -07:00
Jess Bees
4a8f18e34d
Add starter workflows for Pages builds and deployments ( #1645 )
...
* commit dummy workflow
* Update nextjs.yml
* renaming
* actually do a node build
* add jekyll build & deploy
* add permissions
* update jekyll to use composite upload action
* update next to use composite upload action
* update icon yml
* change nexjs icon
* Cleanup further the Jekyll template
* add gatsby starter workflow
* fix composite error
* fix updated actions
* Add Hugo
* Apply suggestions from code review
* Inital commit for nuxtjs starter workflow
* Cleanup all templates
* Add baseUrl through an action
* Use `base_url` output for Hugo configuration
* Create static.yml
* Create static.properties.json
* clarify path
* alternative jekyll icon with only tube
* use alternate jekyll icon
* use original xvg with proper viewBox parameters
* Add paper-spa/configure-pages to starter workflows
Replaces paper-spa/setup-pages where appropriate.
* use setup-ruby action instead of our container
* Add starter workflow for GitHub Pages's legacy Jekyll build
Named `jekyll-gh-pages` so that it connotes the familiar "hands off"
build process of the Jekyll build as performed by github pages workers,
without sounding deprecated by using the words "legacy" or "classic".
* Use the static_site_generator input so we can modify the correct config
* Update gatsby.yml
* Update wording on the 'legacy' jekyll workflow
* Fix filename: this should have a json extension
* Fix filename: this should have a .properties.json extension
* Update nextjs.properties.json
* Update static.properties.json
* Fix typo in name of Gatsby
* Remove pull_request triggers
* Update to latest versions of core Actions
* Remove '--if-present' flag from 'npm run build' commands to prevent silent failure
* Perform static HTML export for Next.js
* Add '--no-install' flag to 'npx' usage
* Update Nuxt starter workflow to run 'generate'
* Default to using npm if not using yarn
* Reword 'nuxt generate' step name
* Update pages/gatsby.yml
* Update description of Jekyll starter workflow
* Add configure-pages step to static workflow
* Add configuration step to enable Pages
* Pages: Set `PREFIX_PATHS` env var for Gatsby build
* Update Next.js starter workflow to cache builds
See https://nextjs.org/docs/advanced-features/ci-build-caching#github-actions
* Update NuxtJS starter workflow to cache builds
Basically modeled after the Gatsby starter workflow
* Call out node ssg getting started + setup
* Update nuxt documentation
* Retarget actions referencing `paper-spa` to `actions`
Also point to newly published `v1` tags rather than `main` or `v0`.
Co-authored-by: yimysty <yimysty@github.com >
Co-authored-by: Tommy Byrd <tcbyrd@github.com >
Co-authored-by: Yoann Chaudet <yoannchaudet@github.com >
Co-authored-by: Timothy <tjyung@github.com >
Co-authored-by: Smitha Borkar <12040799+smithaborkar@users.noreply.github.com >
Co-authored-by: James M. Greene <JamesMGreene@github.com >
2022-07-27 18:45:54 +05:30
Sampark Sharma
d8a6cbd17e
Merge pull request #1647 from actions/dependabot/github_actions/peter-evans/close-issue-2
...
Bump peter-evans/close-issue from 1 to 2
2022-07-27 17:37:32 +05:30
dependabot[bot]
d21062f26a
Bump peter-evans/close-issue from 1 to 2
...
Bumps [peter-evans/close-issue](https://github.com/peter-evans/close-issue ) from 1 to 2.
- [Release notes](https://github.com/peter-evans/close-issue/releases )
- [Commits](https://github.com/peter-evans/close-issue/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: peter-evans/close-issue
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-07-27 12:06:19 +00:00
Sampark Sharma
edda97ebfb
Merge pull request #1646 from actions/dependabot/github_actions/pozil/auto-assign-issue-1.8.0
...
Bump pozil/auto-assign-issue from 1.4.0 to 1.8.0
2022-07-27 17:35:47 +05:30
dependabot[bot]
3f209e2e12
Bump pozil/auto-assign-issue from 1.4.0 to 1.8.0
...
Bumps [pozil/auto-assign-issue](https://github.com/pozil/auto-assign-issue ) from 1.4.0 to 1.8.0.
- [Release notes](https://github.com/pozil/auto-assign-issue/releases )
- [Commits](https://github.com/pozil/auto-assign-issue/compare/v1.4.0...v1.8.0 )
---
updated-dependencies:
- dependency-name: pozil/auto-assign-issue
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
2022-07-27 11:07:22 +00:00
Sampark Sharma
8ccc186490
Merge pull request #1562 from actions/phantsure/dependabot
...
Add dependabot to starter-workflow
2022-07-27 16:36:48 +05:30
Sampark Sharma
825ee757b4
Merge branch 'main' into phantsure/dependabot
2022-07-27 16:36:06 +05:30
Sampark Sharma
263b18defd
Merge pull request #1622 from jamesmoore/main
...
fix: docker-publish.yml cosign command line args when multiple tags are present
2022-07-27 16:16:23 +05:30
Sampark Sharma
35d42e57bd
Merge branch 'main' into main
2022-07-27 16:15:08 +05:30
omerzi
8d20e65309
Adding JFrog Frogbot to GitHub starter workflows
2022-07-26 10:56:16 +03:00
omerzi
157a5156d8
Adding JFrog Frogbot to GitHub starter workflows
2022-07-26 10:54:41 +03:00
Sampark Sharma
e62f5e7638
Merge pull request #1638 from laurentsimon/release/bump-go
...
Bump version for SLSA Go builder
2022-07-20 17:17:22 +05:30
laurentsimon
4d31a0b2a1
update
2022-07-19 00:47:52 +00:00
Sampark Sharma
2aa5f81d6b
Merge pull request #1305 from nschonni/packagelock-v2
...
chore: upgrade package-lock.json to v2
2022-07-18 17:57:14 +05:30
Sampark Sharma
3801250a22
Merge branch 'main' into packagelock-v2
2022-07-18 17:56:36 +05:30
Sampark Sharma
40639cd539
Merge pull request #1627 from andreas-nesheim/patch-1
...
Update dotnet.yml
2022-07-18 17:53:29 +05:30
Sampark Sharma
a34f152192
Merge branch 'main' into patch-1
2022-07-13 18:29:42 +05:30
Sampark Sharma
3603e1f7d1
Merge pull request #1623 from actions/updating-dr-action-version
...
Update the sample version of the Dependency Review action.
2022-07-12 16:57:13 +05:30
Andreas Nesheim
b8cd048775
Update dotnet-desktop.yml
2022-07-05 09:57:44 +02:00
Andreas Nesheim
313d29fe98
Update dotnet.yml
2022-07-05 09:53:27 +02:00
Federico Builes
948fdf226a
Update the sample version of the Dependency Review action.
2022-06-28 17:20:56 +02:00
James Moore
4235f787e5
fix cosign command line args
2022-06-28 08:00:44 +01:00
Jeevan Reddy Ragula
f2f7dfc0e6
Merge branch 'main' into main
2022-06-28 11:50:22 +05:30
Shaopeng Li
658980f080
Add lintr starter workflow
2022-06-27 20:51:38 -07:00
Sampark Sharma
692c4c5260
Merge pull request #1564 from redhat-actions/add-crda-workflow
...
Add CRDA starter workflow and modify openshift workflow
2022-06-24 18:07:57 +05:30
divyansh42
beafd2dec2
Add CRDA starter workflow and modify openshift workflow
...
Signed-off-by: divyansh42 <diagrawa@redhat.com >
2022-06-24 16:25:53 +05:30
Sampark Sharma
253f98bd1f
Merge pull request #1610 from dlorenc/bumpcos
...
Update cosign to 1.9.0
2022-06-23 16:27:08 +05:30
Sampark Sharma
e9fbb76bd2
Merge branch 'main' into bumpcos
2022-06-23 16:24:42 +05:30
Sampark Sharma
1103dbd6ed
Merge pull request #1619 from knqyf263/patch-1
...
Update trivy-action to fix the performance issue
2022-06-23 16:24:34 +05:30
Sampark Sharma
1a3f256934
Merge branch 'main' into patch-1
2022-06-23 16:23:28 +05:30
Sampark Sharma
66c4a480e9
Merge pull request #1618 from shaopeng-gh/users/shaopeng-gh/puppet-lint
...
Add puppet-lint starter workflow
2022-06-23 16:23:20 +05:30
Teppei Fukuda
b2d74e9093
Update trivy-action to fix the performance issue
...
This version of trivy-action fixed an issue reported by GitHub. The detail is in https://github.com/aquasecurity/trivy/issues/2357 .
2022-06-23 08:36:06 +03:00
Shaopeng Li
f9a8a7ec39
fix image
2022-06-22 18:02:42 -07:00
Shaopeng Li
b37b1dda32
Revert "update image"
...
This reverts commit d26b20b233 .
2022-06-22 18:01:39 -07:00
Shaopeng Li
d26b20b233
update image
2022-06-22 18:01:19 -07:00
Shaopeng Li
bbd824dff4
use hash
2022-06-22 17:58:09 -07:00
Shaopeng Li
be331aaa2f
Add puppet-lint starter workflow
2022-06-22 17:54:14 -07:00
laurentsimon
7ae8d12d9a
updates ( #1615 )
...
Co-authored-by: Bishal Prasad <bishal-pdmsft@github.com >
2022-06-22 17:15:15 +05:30
Austen Stone
c91d79cf30
Update tfsec.yml ( #1616 )
2022-06-22 17:10:07 +05:30
Dan Lorenc
c85125e539
Update cosign to 1.9.0
...
Signed-off-by: Dan Lorenc <lorenc.d@gmail.com >
2022-06-21 07:44:50 -05:00
Sampark Sharma
2a715a0a63
Merge pull request #1609 from julienrf/patch-1
...
Enable caching by default
2022-06-21 14:12:00 +05:30
Sampark Sharma
9ae36daa22
Merge branch 'main' into patch-1
2022-06-21 14:09:46 +05:30
Sampark Sharma
28f7eb1e9a
Merge pull request #1614 from bigdaz/main
...
Update to v2.2.1 of gradle-build-action
2022-06-21 14:07:33 +05:30
Daz DeBoer
39cdb74736
Update to v2.2.1 of gradle-build-action
2022-06-20 09:13:25 -06:00
Sampark Sharma
389af794e4
Merge pull request #1601 from Contrast-Security-OSS/main
...
Adds Contrast Scan workflow
2022-06-20 17:39:22 +05:30
Noah Irwin
d3ee6c3b09
Merge branch 'main' of github.com:Contrast-Security-OSS/starter-workflows
2022-06-20 13:05:08 +01:00
Noah Irwin
11f6dcf7a3
Merge branch 'main' of https://github.com/actions/starter-workflows
2022-06-20 13:03:41 +01:00
NoahContrast
769d1c3762
Merge branch 'main' into main
2022-06-20 12:52:34 +01:00
Noah Irwin
3a8411e0fd
Add workflow permissions
2022-06-20 11:44:08 +01:00
laurentsimon
c369c58c3b
✨ Add entry for SLSA Go builder ( #1600 )
...
* Add entry fo Go builder
* updates
* updates
* updates
* updates
* updates
* updates
* updates
* updates
* updates
* rename icon
* updates
* updates
* updates
* updates
* updates
* updates
* disclaimer
* fix icon name
* updates
* updates
* comments
2022-06-20 11:54:36 +05:30
Nick Schonning
f13e67688e
ci: use Node 16 with caching for internal actions
2022-06-17 13:44:15 -04:00
Nick Schonning
746c698c90
chore: upgrade package-lock.json to v2
2022-06-17 13:44:14 -04:00
Jeevan Reddy Ragula
9af7784a12
Merge branch 'main' into main
2022-06-15 11:18:13 +05:30
Julien Richard-Foy
191e016633
Enable caching by default
...
As shown in the documentation, enable caching by default.
2022-06-14 18:02:02 +02:00
Sampark Sharma
095ec5f937
Merge pull request #1591 from shaopeng-gh/users/shaopeng-gh/phpmd
...
Add starter workflow for PHPMD
2022-06-14 16:11:39 +05:30
Shaopeng Li
5864b8200b
move What PHPMD does is... below PHPMD is a spin-off...
2022-06-14 03:20:43 -07:00
Shaopeng
aa2b29b1c9
Merge branch 'main' into users/shaopeng-gh/phpmd
2022-06-13 13:43:51 -07:00
Shaopeng Li
724a2029a2
Merge branch 'users/shaopeng-gh/phpmd' of https://github.com/shaopeng-gh/starter-workflows into users/shaopeng-gh/phpmd
2022-06-13 13:38:12 -07:00
Shaopeng Li
a0d1fc31f7
Add what PHPMD does
2022-06-13 13:38:09 -07:00
Sampark Sharma
52935e9f58
Merge pull request #1604 from SOOS-JAlvarez/soosdast
...
Update SOOS DAST action to use code-ql upload sarif and change tag
2022-06-13 17:30:12 +05:30
SOOS-JAlvarez
66d01dd6da
code review - put exact hash of release
2022-06-13 08:50:37 -03:00
SOOS-JAlvarez
5f8fa2190b
use codeql upload sarif action
2022-06-10 15:31:19 -03:00
Noah Irwin
ad064a4af4
Updates from PR feedback
2022-06-10 11:35:06 +01:00
Noah Irwin
a54c80f225
Adds Contrast Scan workflow
2022-06-09 12:52:18 +01:00
Shaopeng
c71fa413a0
Merge branch 'main' into users/shaopeng-gh/phpmd
2022-06-09 03:02:48 -07:00
Jeevan Reddy Ragula
81d99f2216
Merge branch 'main' into main
2022-06-09 14:21:51 +05:30
Sampark Sharma
d7a0d84297
Merge pull request #1599 from ak1394/update-42crunch
...
Update workflow to use the newest version of 42Crunch REST API Static…
2022-06-09 12:53:17 +05:30
Sampark Sharma
89327a1d93
Merge branch 'main' into update-42crunch
2022-06-09 12:48:57 +05:30
Sampark Sharma
069e1c2ab1
Merge pull request #1596 from satyamchaurasiapersistent/main
...
Checkmarx cx-flow GitHub Action repo Url issue
2022-06-09 12:41:00 +05:30
Sampark Sharma
e2ed348af3
Merge branch 'main' into main
2022-06-09 12:40:17 +05:30
Shaopeng
dfdd8fc8bc
Merge branch 'main' into users/shaopeng-gh/phpmd
2022-06-08 12:59:53 -07:00
Satyam Chaurasia
7ba355c39e
Adding changes of version and repo URL issue
2022-06-08 06:39:55 +05:30
Anton Krasovsky
44f8355dd3
Update workflow to use the newest version of 42Crunch REST API Static Security Testing Action
2022-06-07 17:57:25 +01:00
Sampark Sharma
0fd65c43b4
Merge pull request #1573 from 0xedward/pysa
...
Add Pysa starter workflow
2022-06-07 18:38:23 +05:30
Sampark Sharma
36e2f0ff5a
Merge branch 'main' into pysa
2022-06-07 18:37:00 +05:30
Sampark Sharma
791008dd82
Merge pull request #1575 from 0xedward/pyre
...
Add Pyre starter workflow
2022-06-07 18:36:41 +05:30
Sampark Sharma
7586af9685
Merge branch 'main' into pyre
2022-06-07 18:35:08 +05:30
Edward
862560d6d0
Add workflow for Pysa
...
https://github.com/facebook/pysa-action
https://github.com/facebook/pyre-check
2022-06-06 18:06:03 -04:00
Edward
eda5a46a95
Add Pyre starter workflow
2022-06-06 18:04:42 -04:00
Sampark Sharma
d5d2e9e755
Merge pull request #1590 from rvermeulen/patch-2
...
Set `fail-build` property to false
2022-06-06 16:04:04 +05:30
Sampark Sharma
55277da135
Merge branch 'main' into patch-2
2022-06-06 16:03:16 +05:30
satyamchaurasiapersistent
ab9d895e8d
Repo Url and SHA value updated.
2022-06-06 11:45:21 +05:30
satyamchaurasiapersistent
def3d9a065
Merge pull request #1 from DhavalPatelPersistent/patch-1
...
Update checkmarx.yml
2022-06-06 11:40:16 +05:30
Shaopeng Li
b812cc5eda
use new logo from repo owner
2022-06-04 19:50:14 -07:00
Shaopeng
e6488c4510
Merge branch 'main' into users/shaopeng-gh/phpmd
2022-06-03 14:32:57 -07:00
Sampark Sharma
49651eb3ec
Merge pull request #1582 from SOOS-JAlvarez/soosdast
...
Add SOOS DAST starter workflow
2022-06-03 12:26:51 +05:30
Sampark Sharma
d9a1c35a67
Merge branch 'main' into soosdast
2022-06-03 12:17:00 +05:30
Sampark Sharma
192bf7cae2
Merge pull request #1592 from laurentsimon/patch-2
...
✨ Bump scorecard hash for v1.1.1
2022-06-03 12:15:55 +05:30
SOOS-JAlvarez
d33aefde62
updated action version
2022-06-02 12:12:22 -03:00
laurentsimon
74408a5287
Update scorecards.yml
2022-06-01 11:00:27 -07:00
laurentsimon
74b6f42255
Update scorecards.yml
2022-06-01 10:50:44 -07:00
laurentsimon
978c3bbb41
Update scorecards.yml
2022-06-01 09:15:10 -07:00
Shaopeng Li
dfd625dcc4
use hash
2022-05-31 19:10:04 -07:00
Shaopeng Li
45198b14e0
phpmd
2022-05-31 18:51:10 -07:00
SOOS-JAlvarez
6f6fb6862e
Merge pull request #1 from actions/main
...
Merge branch 'actions:main' into soosdast
2022-05-31 12:49:33 -03:00
Remco Vermeulen
7757e2cdbd
Merge branch 'main' into patch-2
2022-05-31 14:34:24 +02:00
Sampark Sharma
bef546bf42
Merge pull request #1589 from rvermeulen/patch-1
...
Add actions read permission
2022-05-31 17:52:12 +05:30
Remco Vermeulen
477f6af84e
Shorten the comment
...
The comment is shortened by removing the URL to the documentation.
Co-authored-by: Sampark Sharma <phantsure@github.com >
2022-05-31 14:19:53 +02:00
Remco Vermeulen
27f5b1e9fd
Add descriptive comment
...
The `actions: read` permission is only required when the workflow is executed in a private repository.
2022-05-31 12:28:16 +02:00
Remco Vermeulen
77df908268
Set fail-build property to false
...
Whenever a security issue is found the `scan action` fails the build and the step, which causes the workflow to fail before uploading the results to Code Scanning.
This change turns the error into a warning.
2022-05-30 14:16:42 +02:00
Remco Vermeulen
b9fbda1e7d
Add actions read permission
...
The CodeQL Action requires this permission to collect information of the workflow run.
2022-05-30 14:11:28 +02:00
Sampark Sharma
c45d783de7
Merge pull request #1583 from laurentsimon/feat/v1.1.0
...
✨ Scorecard v1.1.0 hash bump
2022-05-30 11:01:51 +05:30
Sampark Sharma
67ad863b29
Merge branch 'main' into feat/v1.1.0
2022-05-30 11:01:21 +05:30
Sampark Sharma
5ed0eef7c5
Merge pull request #1042 from fredsterorg/main
...
Fix typo
2022-05-30 11:01:04 +05:30
fredster33
539d299986
Merge branch 'actions:main' into main
2022-05-27 13:47:12 -07:00
SOOS-JAlvarez
e2e966c910
couple fixes from review
2022-05-27 09:36:07 -03:00
laurentsimon
866ad3b83c
updates
2022-05-26 14:50:13 +00:00
laurentsimon
a80536a617
Scorecard v1.1.0 hash bump
2022-05-26 14:46:58 +00:00
Sampark Sharma
4848d14b19
Merge pull request #1579 from actions/bishal-pdMSFT-patch-1
...
Fix the missing `on` trigger for AKS Kompose
2022-05-25 11:08:23 +05:30
SOOS-JAlvarez
a4fc6b086e
SOOS DAST starter action submission
2022-05-24 16:52:04 -03:00
Bishal Prasad
86a309710a
Merge branch 'main' into bishal-pdMSFT-patch-1
2022-05-24 10:38:42 +05:30
Atul Malaviya
e7156a09a4
Merge pull request #1581 from jaiveerk/bugfix-sw
...
Added checkout step to aks helm starter workflow
2022-05-23 17:25:30 -05:00
Jaiveer Katariya
2be3a09ccb
removed unnecessary checkout from kustomize create-secret step
2022-05-23 14:59:13 -04:00
Jaiveer Katariya
ea7d7777b6
added checkout step to helm starter workflow
2022-05-23 14:47:39 -04:00
Sampark Sharma
06a60e58df
Merge pull request #1574 from 0xedward/main
...
Fix link to `code-scanning` directory
2022-05-23 17:53:38 +05:30
Sampark Sharma
d1b6fe6387
Merge branch 'main' into main
2022-05-23 17:52:47 +05:30
Sampark Sharma
a905804579
Merge pull request #1386 from h0x0er/patch-1
...
Added token permission for deployments/azure-staticwebapp.yml
2022-05-23 16:57:33 +05:30
Sampark Sharma
d8178dc63c
Merge branch 'main' into patch-1
2022-05-23 14:35:39 +05:30
Mani Sai V
d030c86952
Merge branch 'main' into main
2022-05-23 10:36:15 +05:30
Bishal Prasad
9f02725cf7
Fix the missing on trigger for AKS Kompose
2022-05-21 11:13:24 +05:30
fredster33
fb28da0641
Fix escaping
2022-05-20 16:55:27 -07:00
Sampark Sharma
07ac6da026
Merge pull request #1572 from actions/fixing-dr-action-typo
...
Fixing typo in dependency-review-action
2022-05-20 14:56:41 +05:30
Edward
bed5e488cf
Fix link to code-scanning directory
...
Changed https://github.com/actions/starter-workflows/tree/main/ci to https://github.com/actions/starter-workflows/tree/main/code-scanning
2022-05-16 18:28:59 -04:00
Federico Builes
a3f4ca426f
Fixing typo in dependency-review-action.
2022-05-16 13:44:44 -07:00
Sampark Sharma
7e07c9f957
Merge pull request #1488 from Devils-Knight/permks-13
...
Add token permissions for deployments/azure-webapps-node.yml
2022-05-16 16:38:34 +05:30
Sampark Sharma
487699b3c5
Merge branch 'main' into permks-13
2022-05-16 16:34:32 +05:30
Sampark Sharma
f24f600ca2
Merge pull request #1487 from Devils-Knight/permks-12
...
Add token permissions for deployments/azure-webapps-java-jar.yml
2022-05-16 16:34:02 +05:30
Sampark Sharma
f9e7f3a80b
Merge branch 'main' into permks-12
2022-05-16 16:32:15 +05:30
Sampark Sharma
479a1df781
Merge pull request #1486 from Devils-Knight/permks-11
...
Add token permissions for deployments/azure-webapps-dotnet-core.yml
2022-05-16 16:31:38 +05:30
Sampark Sharma
957236b419
Merge branch 'main' into permks-11
2022-05-16 16:29:11 +05:30
Sampark Sharma
6d165740c3
Add token permissions for deployments/azure-webapps-php.yml
2022-05-16 16:28:45 +05:30
Sampark Sharma
70a0a4ecc0
Merge branch 'main' into permks-4
2022-05-16 16:25:42 +05:30
Sampark Sharma
4d76d309bf
Merge pull request #1476 from Devils-Knight/permks-1
...
Add token permissions for deployments/azure-webapps-python.yml
2022-05-16 16:25:07 +05:30
Sampark Sharma
88b37d30eb
Merge branch 'main' into permks-1
2022-05-16 16:23:38 +05:30
Sampark Sharma
c325d3892d
Merge pull request #1401 from h0x0er/patch-6
...
Added github_token permissions in deployments/azure-container-webapp.yml
2022-05-16 16:21:25 +05:30
Sampark Sharma
adcabbd5f2
Merge branch 'main' into patch-6
2022-05-16 16:17:29 +05:30
fredster33
1100f4c7e8
Escape to pass tests
2022-05-14 07:24:17 -07:00
fredster33
d933ed8fa6
Merge branch 'actions:main' into main
2022-05-14 22:20:42 +08:00
Sampark Sharma
2e60fc7b9f
Merge pull request #1546 from yongyan-gh/users/yongyan-gh/hadolint
...
Add starter workflow for hadolint
2022-05-11 13:07:23 +05:30
Yong Yan
fc57d75274
use action commitment sha
2022-05-09 11:16:42 -07:00
Sampark Sharma
2c158606d7
Merge branch 'main' into phantsure/dependabot
2022-05-09 17:53:31 +05:30
Mani Sai V
ee7a3deec8
Merge branch 'main' into main
2022-05-09 14:22:14 +05:30
Yong Yan
4cebf991d1
Merge branch 'main' into users/yongyan-gh/hadolint
2022-05-05 12:11:01 -07:00
Sampark Sharma
041436d462
Merge pull request #1563 from actions/auto-assign
...
Auto assign PRs and Issues
2022-05-05 16:22:24 +05:30
Sampark Sharma
3e8902ca56
Add dependabot
2022-05-05 15:55:43 +05:30
Yong Yan
3fc8d6c608
Merge branch 'main' into users/yongyan-gh/hadolint
2022-05-04 12:33:33 -07:00
Sampark Sharma
41b1bb864a
Adding bishal-pdmsft as a reviewer
2022-05-04 16:36:39 +05:30
Sampark Sharma
52fc31bdb1
Rename auto_assign.yml to auto-assign.yml
2022-05-04 16:35:40 +05:30
Sampark Sharma
49f91dc342
Auto issue assignment
2022-05-04 16:30:09 +05:30
Sampark Sharma
a2c02154b7
Create auto_assign.yml
2022-05-04 16:20:25 +05:30
Sampark Sharma
2e396aeae5
Create auto_assign.yml
2022-05-04 16:07:22 +05:30
Sampark Sharma
0fafc0fbc8
Merge pull request #1537 from jackgkafaty/patch-5
...
Patch 5
2022-05-04 11:22:20 +05:30
Jack G Kafaty
075fcf0858
Merge branch 'main' into patch-5
2022-05-03 11:07:38 -04:00
Anurag Chauhan
a47aaf43c3
Merge pull request #1427 from actions/folder_category
...
Adding folder category check
2022-05-03 11:03:01 +05:30
Anurag Chauhan
c47e06451e
Merge branch 'main' into folder_category
2022-05-03 11:01:04 +05:30
Anurag Chauhan
52bd793f34
Update script/validate-data/index.ts
...
Co-authored-by: Bishal Prasad <bishal-pdmsft@github.com >
2022-05-03 11:00:55 +05:30
Sampark Sharma
e168d2ea3f
Merge pull request #1498 from slifty/patch-1
...
Rename sync-ghes workflow for consistancy
2022-05-03 10:33:47 +05:30
Sampark Sharma
5ce076d16a
Merge branch 'main' into patch-1
2022-05-03 10:32:58 +05:30
Sampark Sharma
81bee477bc
Merge pull request #1294 from mattmoor/support-uppercase-repos
...
Support uppercase repository names with cosign.
2022-05-03 10:29:14 +05:30
Sampark Sharma
eb24769c55
Merge branch 'main' into support-uppercase-repos
2022-05-03 10:28:39 +05:30
Sampark Sharma
52a7872a4c
Merge pull request #1199 from mattiascibien/patch-1
...
Fix dotnet-desktop template
2022-05-03 10:28:16 +05:30
Daniel Schultz
f007e412ee
Rename sync-ghes workflow for consistancy
...
Issue #1497
2022-05-02 15:30:58 -04:00
Jack G Kafaty
e6c5cbdbe2
Merge branch 'main' into patch-5
2022-05-02 12:37:31 -04:00
Bishal Prasad
b3895dd7f8
Merge branch 'main' into folder_category
2022-05-02 19:14:12 +05:30
Anurag Chauhan
74122beced
Fixing creator check
2022-05-02 13:22:36 +00:00
Mattias Cibien
aea0ce1b4c
Merge branch 'main' into patch-1
2022-05-02 15:04:40 +02:00
Sampark Sharma
c81b7bc3a4
Merge branch 'main' into support-uppercase-repos
2022-05-02 16:19:20 +05:30
fredster33
14d4c2640d
Merge branch 'actions:main' into main
2022-05-02 18:40:20 +08:00
Sampark Sharma
a8fd379975
Merge pull request #1552 from actions/Phantsure-patch-1
...
Fix typo "depdendencies" => "dependencies"
2022-05-02 16:00:29 +05:30
Yong Yan
39e5002eed
Merge branch 'main' into users/yongyan-gh/hadolint
2022-05-02 01:54:24 -07:00
Yong Yan
ee2bbcf8d8
update step name
2022-05-02 01:53:59 -07:00
Sampark Sharma
ca970a2124
Fix typo
2022-05-02 12:23:29 +05:30
Anurag Chauhan
c032ee101f
adding dependency review to allowed categories
2022-05-02 06:32:43 +00:00
Anurag Chauhan
13f6b05e44
Merge branch 'main' of https://github.com/actions/starter-workflows into folder_category
2022-05-02 06:18:12 +00:00
Anurag Chauhan
5aba279800
addressing review comments
2022-05-02 06:08:29 +00:00
Sampark Sharma
c08ecddda2
Merge pull request #1542 from 0atman/patch-1
...
Update setup-ruby to the latest release
2022-04-29 11:27:38 +05:30
Sampark Sharma
de5c81ef7d
Merge branch 'main' into patch-1
2022-04-29 11:26:23 +05:30
Abir Majumdar
d09e57c7a3
Adding workflow for sobelow (static analysis tool for the Phoenix framework) ( #1528 )
...
* Adding sobelow workflow
* Removing setup-beam dependency
* Updating instructions
2022-04-29 00:52:57 +05:30
Bar Hofesh
662e915c0f
Add NeuraLegion to starter workflows ( #1203 )
...
* Added Neuralegion to starter workflows
* Using an action
* Fixed Indentation :)
* Update neuralegion.yml
Co-authored-by: Bishal Prasad <bishal-pdmsft@github.com >
2022-04-29 00:31:20 +05:30
Jeevan Reddy Ragula
b321667cf4
Merge branch 'main' into main
2022-04-28 19:14:03 +05:30
Jeevan Reddy Ragula
3af48ac216
Merge pull request #6 from ZscalerCWP/snyk-upgrade-c53a0f308f9bec0dd58141ed12f41575
...
[Snyk] Upgrade @actions/core from 1.2.6 to 1.6.0
2022-04-28 19:13:14 +05:30
Tristram Oaten
0ae51b0d10
fix sha
2022-04-28 10:58:56 +01:00
Yong Yan
b6633ec292
Add starter workflow for hadolint
2022-04-26 22:00:20 -07:00
Marco Gario
766066e1ea
Merge pull request #1543 from adityasharad/patch-1
...
CodeQL starter workflow: Replace git.io links
2022-04-26 20:51:56 +02:00
Aditya Sharad
a2a01a4b0b
CodeQL starter workflow: Replace git.io links
...
git.io is deprecated.
Replace the references with full links or aka.ms links to the same documentation.
2022-04-26 02:26:34 -07:00
Tristram Oaten
a52cd5a16a
Update setup-ruby to the latest release
...
The default github action ruby template references this old commit which doesn't have any modern rubies https://github.com/ruby/setup-ruby/commit/473e4d8fe5dd94ee328fdfca9f8c9c7afc9dae5e
The fix is to update the pinned version to the latest release https://github.com/alphagov/forms-api/pull/3/commits/e3c8ad2759088a12ba9f3040d2c47c23799c8455
2022-04-25 15:02:37 +01:00
DhavalPatelPersistent
308401f524
Update checkmarx.yml
2022-04-25 15:30:28 +05:30
Jaiveer Katariya
ad9daa8da3
removed actions read permission from createSecret and buildImage steps ( #1539 )
2022-04-23 10:10:21 +05:30
snyk-bot
1c5c0f7c8a
fix: upgrade @actions/core from 1.2.6 to 1.6.0
...
Snyk has created this PR to upgrade @actions/core from 1.2.6 to 1.6.0.
See this package in npm:
https://www.npmjs.com/package/@actions/core
See this project in Snyk:
https://app.snyk.io/org/cwp-2/project/fd2218da-0d06-448b-be57-a7d3e69b0389?utm_source=github-enterprise&utm_medium=referral&page=upgrade-pr
2022-04-22 19:37:39 +00:00
Jaiveer Katariya
c06604910c
Parallelize Jobs for AKS Starter Workflows ( #1534 )
...
* Reworked AKS deployment workflows (#1403 )
* rebased to partner_templates
* Renaming workflow
* Updated corresponding properties.json files for the new aks workflows under deployments.
* Updated properties.json titles for aks workflows
* Renamed SECRET_NAME to IMAGE_PULL_SECRET_NAME
* Moved permissions down to the job level
* Updated documentation links
* Updated permission for action to read
* Removing redundant permissions
* write -> read for actions
* Updated descriptions
* Less reference documentation in header
* Added comments to each AKS Starter Workflow step
Co-authored-by: Tommy Barnes <thbarnes@microsoft.com >
* Update AKS workflows to not use imagePullSecrets (#1494 )
* removing old method of adding imagePullSecrets
* fixing step casing
* For testing: Dependency review starter workflow
* changed back to image pull secret, added mask, clarified website and pull secret instructions
* made changes to other aks files
* Added back imagepullsecrets param to deploy action, reordered env vars
* changing release version of deploy action
* restructured starter workflows to parallelize secret creation and image building
* renamed to buildImage and removed extra space
* cleaned up some random newlines
* removed extra space
* removing changes from partner branch
* removing changes from partner branch
* through mistake in changing PR, two files lost step for createSecret
Co-authored-by: Tommy Barnes <thomas.jonathan.barnes@gmail.com >
Co-authored-by: Tommy Barnes <thbarnes@microsoft.com >
Co-authored-by: Israel Miller <ismille@microsoft.com >
Co-authored-by: Bishal Prasad <bishal-pdmsft@github.com >
Co-authored-by: Jaiveer Katariya <jaiveerkatariya@Jaiveers-MacBook-Pro.local >
Co-authored-by: Jaiveer Katariya <jaiveerkatariya@rgoldshtein.middleeast.corp.microsoft.com >
2022-04-22 13:40:20 +05:30
Jack G Kafaty
a5cb76fffb
Update codeql.yml
2022-04-21 13:19:45 -04:00
Jack G Kafaty
bf7a4cab85
Update codeql.yml
...
Line 51 added the query packs by default but commented.
Lines 62-63: added better instructions
Lines 68-70 added an example which provides better detail
2022-04-21 13:09:39 -04:00
Mani Sai V
eb77969d4f
Merge branch 'main' into main
2022-04-21 15:27:22 +05:30
Jeevan Reddy Ragula
cfa93d0eec
Update zscaler-iac-scan.yml
2022-04-21 15:26:09 +05:30
Jeevan Reddy Ragula
24b1703536
Merge pull request #3 from ZscalerCWP/pr-comments
...
Addressing PR Comments from Community
2022-04-21 15:24:49 +05:30
mvecha
73afccbbd5
Addressing PR Comments from Community
2022-04-21 15:20:01 +05:30
Sampark Sharma
2b9e783627
Merge pull request #1527 from indirect/standardize-rails-name
...
Shorten Rails workflow name, in line with others
2022-04-20 13:18:51 +05:30
Sampark Sharma
014522d133
Merge branch 'main' into standardize-rails-name
2022-04-20 13:17:57 +05:30
Sampark Sharma
fd2e2dca61
Merge pull request #1529 from jglick/patch-1
...
Update docker/build-push-action
2022-04-19 13:15:50 +05:30
Jesse Glick
2885b083c9
Update docker/build-push-action
...
https://github.com/docker/build-push-action/commit/ac9327eae2b366085ac7f6a2d02df8aa8ead720a to pick up https://github.com/docker/build-push-action/pull/569
2022-04-18 15:39:08 -04:00
André Arko
ac3c29ff5b
Shorten Rails workflow name, in line with others
...
The workflows for Ruby, RubyGem, Jekyll, and similar are all just the name of the language, package, or framework. This name change brings Rails in line with the other starters.
2022-04-17 03:07:19 -07:00
Mani Sai V
8fa851b0f2
Merge branch 'main' into main
2022-04-14 13:40:18 +05:30
Yong Yan
92b20ce19b
Add ESLint starter workflow ( #1461 )
...
* Add ESLint starter workflow
* Specify versions
* update permission
* Add typescript to categories
* Update codeql action to v2; add comments
* address review feedbacks
* update categories
2022-04-14 11:34:48 +05:30
Anurag Chauhan
51636c331c
Merge pull request #1446 from arjundashrath/patch-12
...
Add token permissions for code-scanning/pmd.yml
2022-04-13 13:32:15 +05:30
Anurag Chauhan
5a51a46097
Merge branch 'main' into patch-12
2022-04-13 12:47:24 +05:30
Sampark Sharma
8140e379a7
Merge pull request #1405 from h0x0er/patch-8
...
Added github_token permission in deployments/terraform.yml
2022-04-13 12:03:42 +05:30
Sampark Sharma
b25e63892a
Merge branch 'main' into patch-8
2022-04-13 12:03:07 +05:30
Sampark Sharma
6f1fd4e09a
Merge pull request #1429 from h0x0er/patch-14
...
Add github_token permission in deployments/alibabacloud.yml
2022-04-13 11:55:51 +05:30
Sampark Sharma
f17ae3e898
Merge branch 'main' into patch-14
2022-04-13 11:55:22 +05:30
Sampark Sharma
5d6968eae8
Merge pull request #1482 from Devils-Knight/permks-7
...
Add token permissions for deployments/tencent.yml
2022-04-13 11:48:32 +05:30
Sampark Sharma
fe3aca603b
Merge branch 'main' into permks-7
2022-04-13 11:47:46 +05:30
Sampark Sharma
8305a2c54f
Merge pull request #1413 from arjundashrath/patch-5
...
Add token permissions for deployments/aws.yml
2022-04-13 11:44:50 +05:30
Sampark Sharma
608ce4de6f
Merge branch 'main' into patch-5
2022-04-13 11:40:16 +05:30
Sampark Sharma
7d1db56a56
Merge pull request #1521 from frecks/go-1.18
...
chore: Update go version to 1.18
2022-04-13 11:23:43 +05:30
Andrew Freckelton
930435b82c
Merge branch 'main' into go-1.18
2022-04-12 02:18:38 -04:00
Sampark Sharma
0766923eb9
Merge pull request #1523 from actions/bishal-pdMSFT-patch-2
...
Add Actions team as CODEOWNERS for code-scanning starter workflows
2022-04-12 11:35:34 +05:30
Sampark Sharma
3b0a54ee6b
Merge branch 'main' into bishal-pdMSFT-patch-2
2022-04-12 11:34:09 +05:30
Sampark Sharma
1d0d484dfe
Merge pull request #1522 from actions/bishal-pdMSFT-patch-1
...
Remove creator property from rust-clippy
2022-04-12 10:57:48 +05:30
Bishal Prasad
ae0ff4dd3a
Add Actions team as CODEOWNERS for code-scanning starter workflows
2022-04-12 10:29:04 +05:30
Bishal Prasad
94d3aff4c6
Remove creator property from rust-clippy
...
This is owned by @josepalafox's BD team in GitHub.
2022-04-12 10:27:04 +05:30
Yong Yan
66f87f9dfe
Add clj-watson starter workflow ( #1460 )
...
* Add clj-watson starter workflow
* update permissions
* update to latest release
* Update clj-watson-action to official release
* Update code-scanning/clj-watson.yml
Co-authored-by: Matheus Bernardes <12648924+mthbernardes@users.noreply.github.com >
* Update code-scanning/clj-watson.yml
Co-authored-by: Matheus Bernardes <12648924+mthbernardes@users.noreply.github.com >
* update categories
* update categories
* Update code-scanning/clj-watson.yml
Co-authored-by: Matheus Bernardes <12648924+mthbernardes@users.noreply.github.com >
* Update code-scanning/properties/clj-watson.properties.json
Co-authored-by: Bishal Prasad <bishal-pdmsft@github.com >
* Update code-scanning/clj-watson.yml
Co-authored-by: Matheus Bernardes <12648924+mthbernardes@users.noreply.github.com >
* add comments to yml file
* Update clj-watson.properties.json
* use codeql-action/upload-sarif v2
Co-authored-by: Matheus Bernardes <12648924+mthbernardes@users.noreply.github.com >
Co-authored-by: Bishal Prasad <bishal-pdmsft@github.com >
2022-04-12 10:11:27 +05:30
Andrew Freckelton
9e81e73fe1
chore: Update go version to 1.18
2022-04-11 15:04:06 -04:00
Sampark Sharma
70f16d3552
Merge pull request #1493 from christophe-havard-sonarsource/main
...
SonarCloud in Security Workflows
2022-04-11 13:08:14 +05:30
Sampark Sharma
cef213664b
Merge branch 'main' into main
2022-04-11 13:07:25 +05:30
André Bedran
eeb7d2860d
Removes " Simulator" substring from device name. ( #1470 )
2022-04-11 01:16:50 +05:30
dlorenc
970a7b5255
Update the cosign-install action and default version from 1.4.0 to 1.… ( #1452 )
...
* Update the cosign-install action and default version from 1.4.0 to 1.5.1.
Signed-off-by: Dan Lorenc <lorenc.d@gmail.com >
* Update to 1.7.1 and the latest cosign-installer action.
Signed-off-by: Dan Lorenc <lorenc.d@gmail.com >
Co-authored-by: Bishal Prasad <bishal-pdmsft@github.com >
2022-04-10 23:36:23 +05:30
Bishal Prasad
53ed8ca56f
Merge branch 'main' into main
2022-04-10 23:20:32 +05:30
Anthony Roussel
d80712faf4
Disable Terraform interactive prompts during apply & plan ( #1467 )
2022-04-10 18:59:47 +05:30
Martin André
31b35634e1
Fix pull request trigger in greetings.yml ( #1518 )
2022-04-10 18:37:11 +05:30
Sampark Sharma
769950ce81
Removing code-scanning/shiftleft as per author request ( #1513 )
...
Co-authored-by: Bishal Prasad <bishal-pdmsft@github.com >
2022-04-10 17:20:15 +05:30
Yong Yan
cca97c83b8
Add rust-clippy starter workflow ( #1462 )
...
* Add rust-clippy starter workflow
* fix parameter `wait-for-processing` indent of action github/codeql-action/upload-sarif@v1
* Use commit sha instead of tag
* addressing pr comments
* Update creator
* Add comments
2022-04-09 13:58:14 +05:30
Mani Sai V
7ed991967b
Merge branch 'main' into main
2022-04-07 15:53:34 +05:30
Federico Builes
b26f7e818f
Merge pull request #1500 from actions/elireisman/dr-action
...
Add Security Gallery entry for new Dependency Review Action
2022-04-06 18:09:25 +02:00
Federico Builes
9e8a797367
Merge branch 'main' into elireisman/dr-action
2022-04-06 15:49:02 +02:00
Christophe H
090ead86a9
Update syntax for validation
2022-04-06 14:51:15 +02:00
Christophe H
50c02af8cf
changed version to exact SHA
...
Co-authored-by: Sampark Sharma <phantsure@github.com >
2022-04-06 10:59:27 +02:00
Christophe H
1132fdda5d
Update sonarcloud.properties.json
2022-04-06 10:43:06 +02:00
Christophe H
3f1969e60b
Update sonarcloud.properties.json
2022-04-06 10:26:21 +02:00
Jeevan Reddy Ragula
2a84f61fa5
Merge branch 'main' into main
2022-04-05 18:07:23 +05:30
Mani Sai V
a04a2309d7
Merge pull request #2 from ZscalerCWP/pr-comments
...
Update zscaler-iac-scan.yml
2022-04-05 13:46:34 +05:30
mvecha
74471dae6f
Update zscaler-iac-scan.yml
2022-04-05 13:21:24 +05:30
Sampark Sharma
2d378e0c14
Merge pull request #1481 from Devils-Knight/permks-6
...
Add token permissions for deployments/alibabacloud.yml
2022-04-05 12:42:58 +05:30
Sampark Sharma
0b5aadd7f9
Merge branch 'main' into permks-6
2022-04-05 12:42:13 +05:30
Sampark Sharma
8ba28141fd
Merge branch 'main' into patch-1
2022-04-05 11:36:07 +05:30
Sampark Sharma
b0f93ecd21
Merge pull request #1477 from Devils-Knight/permks-2
...
Add token permissions for code-scanning/codescan.yml
2022-04-05 11:22:37 +05:30
Sampark Sharma
306f1ef4c7
Merge branch 'main' into permks-2
2022-04-05 11:21:59 +05:30
Sampark Sharma
303503987c
Merge pull request #1399 from h0x0er/patch-4
...
Added github_token permissions in code-scanning/xanitizer.yml
2022-04-05 11:20:00 +05:30
Sampark Sharma
095bf8cad1
Merge branch 'main' into patch-4
2022-04-05 11:15:09 +05:30
Sampark Sharma
1bd787b7c5
Merge pull request #1398 from h0x0er/patch-3
...
Added github_token permissions in code-scanning/snyk-infrastructure.yml
2022-04-05 11:14:06 +05:30
Sampark Sharma
06221b8edc
Merge branch 'main' into patch-3
2022-04-05 11:11:40 +05:30
Mani Sai V
13b90ad1a6
Merge branch 'main' into main
2022-04-04 18:18:03 +05:30
Jeevan Reddy Ragula
0a415fd1c4
Merge pull request #1 from ZscalerCWP/zscaler-publish
...
Zscaler IaC Action Publish
2022-04-04 17:56:13 +05:30
mvecha
3857754fa1
Update zscaler-iac-scan.properties.json
2022-04-04 17:55:47 +05:30
mvecha
7a322529a7
Update zscaler-iac-scan.properties.json
2022-04-04 16:29:09 +05:30
mvecha
5e3bc9a2fd
Update zscaler-iac-scan.yml
2022-04-04 16:26:19 +05:30
Sampark Sharma
6e034ae68f
Merge pull request #1480 from Devils-Knight/permks-5
...
Add token permissions for code-scanning/ossar.yml
2022-04-04 16:02:26 +05:30
Sampark Sharma
b3ac7e1761
Merge branch 'main' into permks-5
2022-04-04 16:01:48 +05:30
Anurag Chauhan
71345a82c7
Merge pull request #1478 from Devils-Knight/permks-3
...
Add token permissions for code-scanning/snyk-container.yml
2022-04-04 15:23:42 +05:30
Anurag Chauhan
b67c4cf6c7
Merge branch 'main' into permks-3
2022-04-04 15:16:30 +05:30
Sampark Sharma
e7681343d0
Merge pull request #1400 from h0x0er/patch-5
...
Added github_token permissions in code-scanning/powershell.yml
2022-04-04 15:01:40 +05:30
Sampark Sharma
03bc9f6f9a
Merge branch 'main' into patch-5
2022-04-04 15:01:00 +05:30
Sampark Sharma
b7a599d2aa
Merge pull request #1407 from h0x0er/patch-11
...
Added token permissions in ci/msbuild.yml
2022-04-04 14:58:40 +05:30
Sampark Sharma
0d072a6679
Merge branch 'main' into patch-11
2022-04-04 14:58:00 +05:30
Sampark Sharma
27f678f05f
Merge pull request #1410 from arjundashrath/patch-2
...
Add token permissions for ci/python-publish.yml
2022-04-04 14:53:15 +05:30
Sampark Sharma
cbffb8c46f
Merge branch 'main' into patch-2
2022-04-04 14:52:28 +05:30
Sampark Sharma
a6b18b8616
Merge pull request #1411 from arjundashrath/patch-3
...
Add token permissions for ci/gradle.yml
2022-04-04 14:52:07 +05:30
Sampark Sharma
ba40f51a21
Merge branch 'main' into patch-3
2022-04-04 14:51:26 +05:30
Sampark Sharma
4e5c456801
Merge pull request #1508 from azusa/add-jdk-distribution
...
Add env variable to set the Java distribution to use
2022-04-04 13:04:59 +05:30
Sampark Sharma
e3436f7b4b
Merge branch 'main' into add-jdk-distribution
2022-04-04 13:04:15 +05:30
mvecha
2e60d03ab7
Zscaler IaC Action Publish
2022-04-04 12:38:39 +05:30
Bishal Prasad
e033319c62
Merge branch 'main' into elireisman/dr-action
2022-04-01 10:57:39 +05:30
Bishal Prasad
d629c82ad7
Include "Dependency review" in allowed categories
2022-04-01 10:04:38 +05:30
Bishal Prasad
dbba84eb87
revert back to "Dependency review" category
...
The CI test needs to be fixed and not the other way round.
2022-04-01 10:03:32 +05:30
Eli Reisman
24a0860545
fix broken build due to missing required category
2022-03-31 10:34:19 -07:00
Thomas Boop
d3a4a2c39f
Merge pull request #1510 from thboop/thboop/updateCodeScanning
...
Update codeql action to v2
2022-03-31 09:39:08 -04:00
Thomas Boop
ff59aa4737
Merge branch 'main' into thboop/updateCodeScanning
2022-03-31 09:32:00 -04:00
Thomas Boop
8d8c6f77d6
update to v2
2022-03-31 08:24:35 -04:00
Sampark Sharma
34ffc0ed5b
Merge branch 'main' into patch-3
2022-03-31 16:31:52 +05:30
Sampark Sharma
54f823db6c
Merge branch 'main' into patch-2
2022-03-31 16:29:45 +05:30
Bishal Prasad
439bf3cc34
Change to small case
2022-03-31 14:28:28 +05:30
Christophe H
589aeb1674
Added restrictive permissions for GITHUB_TOKEN
2022-03-31 10:34:04 +02:00
Eli Reisman
3fc061974d
remove "Automation" tag from properites file
2022-03-30 12:52:01 -07:00
Sampark Sharma
d79edd9459
Merge pull request #1341 from varunsh-coder/varunsh-coder-erlang
...
Add token permissions for ci/erlang.yml
2022-03-30 15:19:49 +05:30
Sampark Sharma
d01cf9a9ac
Merge branch 'main' into varunsh-coder-erlang
2022-03-30 15:18:44 +05:30
h0x0er
3c936d3d38
Merge branch 'main' into patch-1
2022-03-30 15:16:20 +05:30
Sampark Sharma
95cf25a3c1
Merge pull request #1428 from h0x0er/patch-13
...
Add github_token permission in ci/elixir.yml
2022-03-30 15:11:51 +05:30
h0x0er
10092345c8
fixing conflict
2022-03-30 15:08:50 +05:30
Sampark Sharma
81a28a238c
Merge pull request #1408 from h0x0er/patch-12
...
Added token permissions in ci/d.yml
2022-03-30 14:59:48 +05:30
Sampark Sharma
c0a153e04a
Merge branch 'main' into patch-12
2022-03-30 14:59:16 +05:30
Sampark Sharma
6ea99267d5
Merge pull request #1483 from Devils-Knight/permks-8
...
Add token permissions for ci/haskell.yml
2022-03-30 14:58:53 +05:30
Sampark Sharma
91969e66ba
Merge branch 'main' into permks-8
2022-03-30 14:58:13 +05:30
Sampark Sharma
f3e1756d97
Merge pull request #1414 from arjundashrath/patch-6
...
Add token permissions for ci/deno.yml
2022-03-30 14:57:57 +05:30
Sampark Sharma
b4961a9c3d
Merge branch 'main' into patch-6
2022-03-30 14:57:23 +05:30
Sampark Sharma
7bd8844415
Merge pull request #1484 from Devils-Knight/permks-9
...
Add token permissions for ci/symfony.yml
2022-03-30 14:57:14 +05:30
Sampark Sharma
54f40b2c6e
Merge branch 'main' into permks-9
2022-03-30 14:56:33 +05:30
Sampark Sharma
51982a6b35
Merge pull request #1485 from Devils-Knight/permks-10
...
Add token permissions for ci/php.yml
2022-03-30 14:56:28 +05:30
Sampark Sharma
358f8874a7
Merge branch 'main' into permks-10
2022-03-30 14:55:48 +05:30
Sampark Sharma
10d8dbd771
Merge pull request #1415 from arjundashrath/patch-7
...
Add token permissions for ci/ruby.yml
2022-03-30 14:55:42 +05:30
Sampark Sharma
c47d6eda52
Merge branch 'main' into patch-7
2022-03-30 14:53:33 +05:30
Sampark Sharma
8a50c56c13
Merge pull request #1430 from h0x0er/patch-15
...
Add github_token permission in ci/scala.yml
2022-03-30 14:52:05 +05:30
Sampark Sharma
0ac628f137
Merge branch 'main' into patch-15
2022-03-30 14:51:15 +05:30
Sampark Sharma
f16fb53228
Merge pull request #1431 from h0x0er/patch-16
...
Add github_token permission in ci/python-app.yml
2022-03-30 14:50:59 +05:30
Sampark Sharma
8702611fe0
Merge branch 'main' into patch-15
2022-03-30 14:48:13 +05:30
Sampark Sharma
8c8e9b2a97
Merge branch 'main' into patch-16
2022-03-30 14:47:39 +05:30
Sampark Sharma
e308dba307
Merge pull request #1445 from arjundashrath/patch-11
...
Add token permissions for ci/r.yml
2022-03-30 14:47:15 +05:30
Christophe H
1e0060ae0f
Added mention to free plan
2022-03-30 10:27:25 +02:00
Eli Reisman
cdc592d603
update action version used in template to "v1" branch; set perms to "contents: read"
2022-03-29 09:47:15 -07:00
Eli Reisman
aee1a20835
add tigher scoped repo perms to workflow run template file
2022-03-29 09:47:15 -07:00
Eli Reisman
5bd031f307
add explanatory comments with links to DR security gallery workflow template file
2022-03-29 09:47:15 -07:00
Eli Reisman
4aa004f885
linter: add tags to props file appropriate for code-scanning/ entries (security gallery)
2022-03-29 09:47:15 -07:00
Eli Reisman
c3a21a83b2
post-review: move DR Action spec and props file into code-scanning/ dir tree temporarily, until maintainers refactor this to security/
2022-03-29 09:47:15 -07:00
Eli Reisman
6537e55e97
post-review: use default "creator" entry: "By GitHub"
2022-03-29 09:47:15 -07:00
Eli Reisman
c5111ef871
update org the final, open-sourced DR Action will be hosted under for GA release
2022-03-29 09:47:15 -07:00
Eli Reisman
d8be55169b
add Security Gallery entry for new Dependency Review Action
2022-03-29 09:47:14 -07:00
Sampark Sharma
9edfd835eb
Merge branch 'main' into patch-11
2022-03-29 17:50:33 +05:30
Thomas Boop
1d9d6d7fb0
Update Actions to node16 ( #1469 )
...
* update actions
* address merge conflicts
* fix java updates
* update github script
* update cache to v3
Co-authored-by: Bishal Prasad <bishal-pdmsft@github.com >
2022-03-28 22:40:48 +05:30
Hiroyuki Onaka
69cce6ad3a
Add env variable to set the Java distribution to use
2022-03-28 19:39:18 +09:00
Bishal Prasad
3be3c5deec
Update cache action to v3 ( #1507 )
2022-03-28 09:47:44 +05:30
Bishal Prasad
e59567a947
Bringing back Datadog Synthetics workflow ( #1503 )
...
* Revert "Revert "Add Datadog Synthetics GitHub action to starter workflows (#1342 )" (#1385 )"
This reverts commit de41169eb0 .
* Add creator
2022-03-25 16:03:59 +05:30
Daz DeBoer
f2990d6b83
Update to v2.1.4 of gradle-build-action ( #1489 )
...
* Update to new version of gradle-build-action
* Update to new version of gradle-build-action
2022-03-23 11:54:13 -04:00
h0x0er
fe3921312c
Merge branch 'main' into patch-15
2022-03-21 21:26:12 +05:30
Christophe H
9ab1bbfdcc
Added Github disclaimer
2022-03-21 10:08:04 +01:00
Christophe H
661de90c0b
Merge pull request #1 from peeter-piegaze-sonarsource/patch-1
...
Update sonarcloud.yml
2022-03-21 09:30:15 +01:00
Shubham malik
5e58bc6ef6
Update azure-webapps-node.yml
2022-03-19 16:47:46 +05:30
Shubham malik
7b765747a5
Update azure-webapps-java-jar.yml
2022-03-19 16:41:42 +05:30
Shubham malik
53a9402455
Update azure-webapps-dotnet-core.yml
2022-03-19 16:39:47 +05:30
Shubham malik
c5f542db49
Update php.yml
2022-03-19 16:35:53 +05:30
Shubham malik
02fa52f6c0
Update symfony.yml
2022-03-19 16:34:10 +05:30
Shubham malik
ceada66602
Update haskell.yml
2022-03-19 16:32:12 +05:30
Shubham malik
a1fe90c10d
Update tencent.yml
2022-03-19 16:00:04 +05:30
Shubham malik
962b63852b
Update alibabacloud.yml
2022-03-19 15:56:24 +05:30
Shubham malik
18952126dc
Update ossar.yml
2022-03-19 15:54:27 +05:30
Shubham malik
bd76c74da6
Update azure-webapps-php.yml
2022-03-19 15:51:52 +05:30
Shubham malik
3a1a8562bf
Update snyk-container.yml
2022-03-19 15:49:21 +05:30
Shubham malik
4740e068c1
Update codescan.yml
2022-03-19 15:46:17 +05:30
Shubham malik
4657e39b91
Update azure-webapps-python.yml
2022-03-19 15:39:54 +05:30
Peeter Piegaze
75a7f2983b
Update sonarcloud.yml
...
Fix phrasing/word-choice
2022-03-18 11:13:00 +01:00
Christophe H
3b2d5d9c43
Added small fixes
2022-03-17 18:07:03 +01:00
Nick Fyson
45ffb2b7ec
Merge pull request #1456 from yongyan-gh/users/yongyan-gh/clj-holmes
...
Add clj-holmes starter workflow
2022-03-16 19:24:32 +00:00
Nick Fyson
f95b7ebe73
Merge branch 'main' into users/yongyan-gh/clj-holmes
2022-03-16 19:07:22 +00:00
Mike Verbanic
c4cc28d92d
feat: add google cloud run starter workflows ( #1392 )
...
* feat: add google cloud run starter workflows
* fix: pr comments
* fix: pr comments
* fix: properties naming
* fix: docker registry path
2022-03-17 00:30:00 +05:30
Matt Moore
002e1a441e
Support uppercase repository names with cosign.
...
My previous PR didn't properly handle uppercase usernames (or repository names) when signing container images with `cosign`.
It seems that the `docker buildx --push` doesn't like this either, but it's passed the output of the `docker/metadata-action` which seems to lowercase things.
Fixes: https://github.com/actions/starter-workflows/issues/1293
Signed-off-by: Matt Moore <mattmoor@chainguard.dev >
2022-03-16 11:48:28 -07:00
Nick Fyson
2a63c49d00
Merge branch 'main' into users/yongyan-gh/clj-holmes
2022-03-16 18:35:15 +00:00
Jonathan Tamsut
46017054a3
Update download-artifact and upload-artifact from v2 to v3 ( #1465 )
...
* migrate to v3
* update download-artifact
2022-03-14 10:35:28 -04:00
Sampark Sharma
b7df85f8ad
Merge branch 'main' into patch-11
2022-03-14 13:09:57 +05:30
Sampark Sharma
6f45632eda
Merge branch 'main' into patch-16
2022-03-14 13:08:51 +05:30
Christophe H
d955f56f67
Add files via upload
2022-03-10 17:17:43 +01:00
Christophe H
c944a10546
Update sonarcloud.properties.json
2022-03-10 17:15:34 +01:00
Christophe H
6f8fa06371
Update sonarcloud.properties.json
2022-03-10 09:45:15 +01:00
Christophe H
8fd84d60c8
Create sonarcloud.properties.json
2022-03-10 09:42:52 +01:00
Christophe H
f6596c9568
Update sonarcloud.yml
2022-03-10 09:41:26 +01:00
Yong Yan
5665b8b5b8
Update code-scanning/clj-holmes.yml
...
Co-authored-by: Nick Fyson <nickfyson@github.com >
2022-03-09 11:18:14 -08:00
Yong Yan
af777b030e
update permissions setting
2022-03-08 14:19:19 -08:00
Yong Yan
90d3b1b63b
Update tool description
...
Co-authored-by: Nick Fyson <nickfyson@github.com >
2022-03-07 09:27:40 -08:00
Yong Yan
023a52c488
remove specifying permissions
...
Co-authored-by: Nick Fyson <nickfyson@github.com >
2022-03-07 09:26:30 -08:00
Yong Yan
e9d7cbd870
Merge branch 'main' into users/yongyan-gh/clj-holmes
2022-03-04 10:44:49 -08:00
Anurag Chauhan
c6cf518c75
reaming directory to folder and added creator check for deployment templates
2022-03-04 06:28:56 +00:00
Anurag Chauhan
91ee67fb2d
Merge branch 'folder_category' of https://github.com/actions/starter-workflows into folder_category
2022-03-04 06:00:07 +00:00
Anurag Chauhan
ac7b3362da
removing unused variables
2022-03-04 05:59:55 +00:00
Anurag Chauhan
d7aa577991
Merge branch 'main' into folder_category
2022-03-04 11:24:22 +05:30
Bishal Prasad
0d462e1c6b
Port reworked AKS templates to main ( #1450 )
2022-03-03 22:43:12 +05:30
Yong Yan
d3fb4810d7
Add clj-holmes starter workflow
2022-03-02 10:53:29 -08:00
Nick Fyson
aab5969536
Merge pull request #1417 from arjundashrath/patch-9
...
Add token permissions for code-scanning/msvc.yml
2022-03-02 09:14:44 +00:00
Nick Fyson
1294763b98
Merge branch 'main' into patch-9
2022-03-02 09:12:21 +00:00
Nick Fyson
fce947f2a5
Merge pull request #1419 from Devils-Knight/permks-2
...
Add token permissions for code-scanning/brakeman.yml
2022-03-01 19:31:13 +00:00
Nick Fyson
8a394a4869
Merge branch 'main' into permks-2
2022-03-01 19:27:20 +00:00
Christophe H
fb2b1099ec
Fixed intro text
2022-03-01 16:39:07 +01:00
Christophe H
b48f15df62
Added space between paragraph
2022-03-01 16:36:37 +01:00
Christophe H
429537d320
Added workflow variables for branches
2022-03-01 16:36:07 +01:00
Christophe H
c5a70f0405
Removed extra spaces
2022-03-01 16:29:42 +01:00
Christophe H
b80e458c62
Added documentation links
2022-03-01 16:29:12 +01:00
Christophe H
0b1f2442e5
Create sonarcloud.yml
2022-03-01 14:58:57 +01:00
Nick Fyson
44bb7ab675
Merge pull request #1381 from arjundashrath/arjundashrath-patch-1
...
Add token permissions for code-scanning/codacy.yml
2022-02-27 14:38:11 +00:00
Nick Fyson
f68379356a
Merge branch 'main' into arjundashrath-patch-1
2022-02-27 14:36:48 +00:00
Nick Fyson
6897aeb2a0
Merge pull request #1418 from Devils-Knight/permks-1
...
Add token permissions for code-scanning/apisec-scan.yml
2022-02-27 14:31:31 +00:00
Nick Fyson
a5b7a6b2c5
Merge branch 'main' into permks-1
2022-02-27 14:30:43 +00:00
Nick Fyson
b7e4c6aebc
Merge pull request #1409 from arjundashrath/patch-1
...
Add token permissions for code-scanning/veracode.yml
2022-02-27 14:29:45 +00:00
Nick Fyson
661f311aa8
Merge branch 'main' into patch-1
2022-02-27 14:29:09 +00:00
Nick Fyson
5175b2b06c
Merge pull request #1444 from arjundashrath/patch-10
...
Add token permissions for code-scanning/sysdig-scan.yml
2022-02-27 14:26:11 +00:00
Nick Fyson
73ecf4a25c
Merge branch 'main' into patch-10
2022-02-27 14:25:31 +00:00
Nick Fyson
7c42ec25f2
Merge pull request #1412 from arjundashrath/patch-4
...
Add token permissions for code-scanning/prisma.yml
2022-02-27 14:23:29 +00:00
Nick Fyson
16d6445e9f
Merge branch 'main' into patch-4
2022-02-27 14:23:00 +00:00
Nick Fyson
0c8eb3d2ad
Merge pull request #1435 from Devils-Knight/permks-13
...
Add token permissions for code-scanning/mobsf.yml
2022-02-27 14:20:37 +00:00
Nick Fyson
8879d481fb
Merge branch 'main' into permks-13
2022-02-27 14:19:33 +00:00
Nick Fyson
59afd3e888
Merge pull request #1447 from laurentsimon/feat/scorecard-v1.0.4
...
Update hash for scorecard's v1.0.4 release
2022-02-27 14:16:03 +00:00
Nick Fyson
638f638347
Merge branch 'main' into feat/scorecard-v1.0.4
2022-02-27 14:15:18 +00:00
Anurag Chauhan
c4a1ceda67
Merge branch 'folder_category' of https://github.com/actions/starter-workflows into folder_category
2022-02-24 10:26:38 +00:00
Anurag Chauhan
aafd23c138
review comments
2022-02-24 10:26:04 +00:00
Atul Malaviya
300f303442
Added PR trigger ( #1448 )
2022-02-20 13:48:18 +05:30
laurentsimon
ed9202263d
Update hash for scorecard's v1.0.4 release
2022-02-18 01:00:27 +00:00
arjundashrath
8c75e2d11f
Update pmd.yml
2022-02-17 08:57:59 +05:30
arjundashrath
93dc183837
Update r.yml
2022-02-17 08:55:16 +05:30
arjundashrath
6a5dc3a753
Update sysdig-scan.yml
2022-02-17 08:50:23 +05:30
Nick Fyson
8596c57868
Merge branch 'main' into permks-13
2022-02-16 11:18:33 +00:00
Nick Fyson
8573ed9cf5
Merge pull request #1416 from arjundashrath/patch-8
2022-02-16 10:50:19 +00:00
Nick Fyson
48d70bb057
Merge branch 'main' into patch-8
2022-02-16 10:47:11 +00:00
Nick Fyson
bf12b3d01a
Merge branch 'main' into permks-13
2022-02-16 10:09:07 +00:00
Nick Fyson
5a06c8f464
Merge pull request #1404 from h0x0er/patch-7
...
Added github_token permissions in code-scanning/semgrep.yml
2022-02-16 10:07:51 +00:00
Nick Fyson
0c9bd866a7
Merge branch 'main' into patch-7
2022-02-16 10:00:27 +00:00
Nick Fyson
e53dd812a5
Merge pull request #1424 from Devils-Knight/permks-7
...
Add token permissions for code-scanning/stackhawk.yml
2022-02-16 09:53:27 +00:00
Nick Fyson
dc87bafe6f
Merge branch 'main' into permks-7
2022-02-16 09:52:35 +00:00
Nick Fyson
af74f124fb
Merge pull request #1432 from Devils-Knight/permks-10
...
Add token permissions for code-scanning/njsscan.yml
2022-02-16 09:20:03 +00:00
Shubham malik
3394a8e62f
Update mobsf.yml
2022-02-15 16:38:05 +05:30
Shubham malik
6706b36121
Update njsscan.yml
2022-02-15 16:04:39 +05:30
h0x0er
f0d5cb1545
added token permission
2022-02-15 13:42:06 +05:30
h0x0er
db842e7ec5
added github_token permission
2022-02-15 13:39:46 +05:30
h0x0er
8bcdd73aa8
added github_token permission
2022-02-15 13:36:24 +05:30
Anurag Chauhan
16478186a1
Merge branch 'main' into folder_category
2022-02-15 10:59:57 +05:30
Shubham malik
aa4aa29543
Update stackhawk.yml
2022-02-14 15:51:06 +05:30
Anurag Chauhan
394301af94
Adding folder category check
2022-02-14 10:11:33 +00:00
Shubham malik
f6474e2bfa
Update brakeman.yml
2022-02-14 15:23:03 +05:30
Shubham malik
ab9bdce2e3
Update apisec-scan.yml
2022-02-14 15:19:56 +05:30
arjundashrath
b93e51dac6
Update msvc.yml
2022-02-14 13:11:47 +05:30
arjundashrath
4333c79965
Update codacy.yml
2022-02-14 13:08:08 +05:30
arjundashrath
baf5276476
Update ruby.yml
2022-02-14 13:05:59 +05:30
arjundashrath
d6dfba970f
Update deno.yml
2022-02-14 13:03:20 +05:30
arjundashrath
fd8ffb3d9c
Update aws.yml
2022-02-14 13:01:38 +05:30
arjundashrath
d8a2673986
Update prisma.yml
2022-02-14 12:59:51 +05:30
arjundashrath
fa52238103
Update gradle.yml
2022-02-14 12:57:42 +05:30
arjundashrath
d50a73e3b8
Update python-publish.yml
2022-02-14 12:47:03 +05:30
arjundashrath
b90ea0582a
Update veracode.yml
2022-02-14 12:43:26 +05:30
h0x0er
ccd26a97cb
added token permissions
2022-02-14 11:30:57 +05:30
h0x0er
dc2daec134
added token permissions
2022-02-14 11:27:43 +05:30
h0x0er
63beace25d
added github_token permission
2022-02-14 11:16:12 +05:30
h0x0er
14ce90e99f
added github_token permissions
2022-02-14 11:13:30 +05:30
Chris Gavin
7fb1c31151
Merge pull request #1402 from actions/fix-enterprise-exclusions
...
Fix some workflows not being excluded from Enterprise syncing.
2022-02-11 17:02:20 +00:00
Chris Gavin
4579cb5c54
Fix some workflows not being excluded from Enterprise syncing.
2022-02-11 15:03:41 +00:00
h0x0er
6e8e5830e9
added token permissions
2022-02-11 16:56:36 +05:30
h0x0er
494ea2d29d
added github_token permissions
2022-02-11 16:52:39 +05:30
h0x0er
2a4545affa
added github_token permissions
2022-02-11 16:50:05 +05:30
h0x0er
b88366bf0e
added token permissions
2022-02-11 16:47:51 +05:30
Nick Fyson
e9cc9b14bc
Merge pull request #1397 from adangel/update-pmd
...
Update pmd to v1.2.0
2022-02-11 09:50:48 +00:00
Andreas Dangel
d580918e06
Update pmd to v1.2.0
...
* Use pmd/pmd-github-action@967a81f8b6
which is v1.2.0
* Remove "cache: maven" setting, which fails if no pom.xml file
is existing
* Set parameter "analyzeModifiedFilesOnly: false" to prevent incomplete
analysis results. See also https://github.com/pmd/pmd-github-action/issues/35
2022-02-10 18:10:25 +01:00
h0x0er
f1b5868145
Merge branch 'main' into patch-1
2022-02-08 20:26:28 +05:30
Nick Fyson
2e489c2619
Merge pull request #1368 from Devils-Knight/Permissions
...
Add token permissions for code-scanning/crunch42.yml
2022-02-04 14:38:09 +00:00
Nick Fyson
53217fe594
Merge branch 'main' into Permissions
2022-02-04 14:37:22 +00:00
Nick Fyson
64ccdd2a47
Merge pull request #1373 from h0x0er/main
...
Added GITHUB_TOKEN permission for code-scanning/anchore.yml
2022-02-04 10:45:44 +00:00
Nick Fyson
c84eced9e9
Merge branch 'main' into main
2022-02-04 10:43:53 +00:00
Nick Fyson
8ec9e75aba
Merge pull request #1377 from Devils-Knight/permissions
...
Add token permissions for code-scanning/checkmarx.yml
2022-02-04 10:26:09 +00:00
Nick Fyson
251b7bbc24
Merge branch 'main' into permissions
2022-02-04 10:25:18 +00:00
h0x0er
5d03c86e26
Added token permission for deployments/azure-staticwebapp.yml
2022-02-04 10:42:13 +05:30
Bishal Prasad
de41169eb0
Revert "Add Datadog Synthetics GitHub action to starter workflows ( #1342 )" ( #1385 )
...
This reverts commit f31e3a9c9d .
2022-02-04 09:45:26 +05:30
Daz DeBoer
98bd06c9ad
Update for gradle/gradle-build-action@v2.1.3 ( #1384 )
2022-02-03 16:24:19 -05:00
abdul-hai-apisec
e7b6150c5d
Added underscore(_) in the name to fix yml errors caused by the empty spaces in the name
2022-02-03 13:54:14 +05:30
h0x0er
7ea0d435cf
Merge branch 'main' into main
2022-02-03 13:40:22 +05:30
arjundashrath
a76776b484
Update codacy.yml
2022-02-02 23:49:53 +05:30
Shubham malik
d71bfc344e
Create checkmarx.yml
2022-02-01 22:34:47 +05:30
Anurag Chauhan
5cdc69b0e1
Merge pull request #1374 from actions/code_scanning_desc
...
Fixing some code scanning workflows description
2022-02-01 16:45:07 +05:30
Anurag Chauhan
9ef177a834
Merge branch 'main' into code_scanning_desc
2022-02-01 16:44:05 +05:30
Daz DeBoer
776a960496
Update for gradle-build-action@v2.1.2 release ( #1375 )
2022-01-31 16:47:10 -05:00
Anurag Chauhan
890150c289
Fixing some code scanning workflows description
2022-01-31 10:48:11 +00:00
h0x0er
0e684da195
x
...
Merge branch 'main' of https://github.com/h0x0er/starter-workflows
2022-01-31 14:29:45 +05:30
h0x0er
34d35389d1
updated gh_token permissions for anchore/scan-action
2022-01-31 14:29:11 +05:30
h0x0er
8430b6f878
Update
2022-01-31 14:23:00 +05:30
Fedor Isakov
c005c55b8b
update google workflow ( #1359 )
2022-01-30 11:37:53 +05:30
Nick Fyson
2e8fec55f6
Merge pull request #1348 from Devils-Knight/starter-workflow
2022-01-28 22:04:00 +00:00
Nick Fyson
e833ff06e4
Merge branch 'main' into starter-workflow
2022-01-28 22:00:17 +00:00
Aarnav Pai
1220bda7e4
Fix version of denoland/setup-deno ( #1369 )
...
* Fix version of `denoland/setup-deno`
* Update deno.yml
2022-01-27 10:51:47 -05:00
Shubham malik
4f0f3e716d
Update crunch42.yml
2022-01-27 15:38:23 +05:30
Bishal Prasad
80404f48bc
Rename node.js.yml to ci/node.js.yml
2022-01-27 10:28:39 +05:30
Bishal Prasad
c0b5490590
Rename ci/bishal-node.js.yml to node.js.yml
2022-01-27 10:27:32 +05:30
Bishal Prasad
7a56117f98
Rename node.js.yml to bishal-node.js.yml
2022-01-27 10:27:08 +05:30
Shubham malik
3b8f20ff6f
updated permission
2022-01-26 22:42:19 +05:30
Nick Fyson
63e7f499e9
Merge pull request #1363 from laurentsimon/patch-1
...
Scorecards: update hash for v1.0.2
2022-01-24 18:44:06 +00:00
laurentsimon
41e7dd427d
Scorecards: update hash to v1.0.2
...
We fixed a small issue and need to update the hash
2022-01-24 08:27:33 -08:00
Varun Sharma
eedf8fbcb3
Update erlang.yml
...
Setting contents: read at workflow level, and removing from job level
2022-01-21 12:23:16 -08:00
Varun Sharma
3c01b8344b
Merge branch 'actions:main' into varunsh-coder-erlang
2022-01-21 11:45:41 -08:00
Mattias Cibien
69b1126777
Merge branch 'main' into patch-1
2022-01-21 18:05:01 +01:00
Andrew Wiltshire
ffa80e095e
fixed grammatical error in node.js.yml ( #1358 )
2022-01-20 09:00:56 +05:30
César Román
a96d2407b5
fix(ci): pylint.yml ( #1108 )
...
ref: #636 . `pylint` command does not work
I've had success running the modified command [here](https://github.com/thecesrom/incendium/blob/project/.github/workflows/pylint.yml ).
Co-authored-by: Josh Gross <joshmgross@github.com >
2022-01-19 18:41:20 -05:00
Jason Freeberg
ba97234b60
Fix indentation error ( #1356 )
2022-01-18 17:07:26 -05:00
Nick Fyson
f2778053bd
Merge pull request #1352 from laurentsimon/feat/scorecardicon
...
✨ Update scorecards icon
2022-01-18 11:06:49 +00:00
Nick Fyson
0a84296a2a
Merge branch 'main' into feat/scorecardicon
2022-01-18 11:05:08 +00:00
André Arko
5635bf05bc
Upgrade Rails workflow to true CI ( #1353 )
...
* Upgrade Rails workflow to true CI
The existing Rails CI example only runs linters, which is not continuous
integration. This change brings the Rails example workflow up to par
with the other web framework CI flows, like Django.
This example is optimized for Rails 7, which does not include NodeJS,
webpack, or yarn by default. No Rails application code changes are
required for this flow to run the tests, and both minitest and rspec are
supported via the `test` rake task.
* add Rails icon
* use env vars, hopefully
* use the full hash for ruby/setup-ruby
* remove PORT since services cannot use it
* stop repeating identical step envs
* resolve env var declaration error
* update setup-ruby to the SHA of v1.92
* use setup-ruby SHA for lint job too
Co-authored-by: Bishal Prasad <bishal-pdmsft@github.com >
2022-01-18 02:04:33 +05:30
Bishal Prasad
11778e9eb0
Add check for GITHUB_TOKEN permissions ( #1354 )
2022-01-17 13:17:29 +05:30
Beth G
f31e3a9c9d
Add Datadog Synthetics GitHub action to starter workflows ( #1342 )
2022-01-15 11:41:46 +05:30
laurentsimon
94100d1d4a
bump
2022-01-14 23:32:21 +00:00
laurentsimon
b224dd8449
update icon
2022-01-14 23:32:21 +00:00
Manuel
588f02dade
Switch java distribution from 'adopt' to 'temurin' ( #1065 )
...
adopt is rebranded into temurin
see https://blog.adoptopenjdk.net/2021/03/transition-to-eclipse-an-update/
2022-01-14 18:05:31 -05:00
Nick Fyson
e873c3ca45
Merge pull request #1345 from laurentsimon/feat/scorecard-release
...
Scorecards: Updates for release
2022-01-14 12:15:31 +00:00
laurentsimon
1b10c28ff4
rem tabs and update comment
2022-01-14 03:00:11 +00:00
laurentsimon
aa643dfa0c
bump hash
2022-01-13 22:29:39 +00:00
shubham malik
f78e23c19d
Update trivy.yml
2022-01-13 11:12:14 +05:30
laurentsimon
b0f310cefc
update token name
2022-01-10 23:52:58 +00:00
laurentsimon
00e08539ca
prepare release
2022-01-10 23:19:46 +00:00
Varun Sharma
f42f92e60c
Update erlang.yml
...
Add token permissions
2022-01-05 09:50:26 -08:00
Nick Fyson
51e7c8e1e6
Merge pull request #1302 from laurentsimon/feat/scorecard
...
Add scorecards config
2022-01-04 19:16:50 +00:00
laurentsimon
d0dba5262b
use v0.0.1
2022-01-04 18:26:32 +00:00
laurentsimon
b73f59a3e8
add icon
2022-01-04 18:26:32 +00:00
laurentsimon
40772919fb
updates
2022-01-04 18:26:32 +00:00
laurentsimon
7c57e8a703
updates
2022-01-04 18:26:32 +00:00
laurentsimon
07be376c3a
updates
2022-01-04 18:26:32 +00:00
laurentsimon
48edda6aca
reduce text
2022-01-04 18:26:32 +00:00
laurentsimon
f38127b062
update text
2022-01-04 18:26:32 +00:00
laurentsimon
9e49744dc2
url
2022-01-04 18:26:32 +00:00
laurentsimon
a894da71d1
pin actions
2022-01-04 18:26:32 +00:00
laurentsimon
a00db4437c
comments
2022-01-04 18:26:32 +00:00
laurentsimon
0e50194de8
use hash
2022-01-04 18:26:32 +00:00
laurentsimon
794e910e12
add scorecards config
2022-01-04 18:26:32 +00:00
Ana Armas Romero
f9d17c0062
Merge pull request #1332 from DhavalPatelPersistent/main
...
Update checkmarx.yml attributes : "uses","project","teams","scanners","params".
2021-12-30 04:17:00 -08:00
DhavalPatelPersistent
97020d0adc
Update checkmarx.yml
...
Point to SHA instead for master
2021-12-30 16:39:28 +05:30
DhavalPatelPersistent
0b45ddae0d
Update / Add "uses","project","teams","scanners","params" attributes.
2021-12-24 15:55:11 +05:30
Nick Fyson
5104ac4274
Merge pull request #1324 from adangel/update-pmd
...
Update pmd to v1.1.0
2021-12-20 15:16:34 +00:00
Andreas Dangel
615c63babc
Update pmd to v1.1.0
...
Use pmd/pmd-github-action@6d98898be0 which is v1.1.0
Use temurin as java distribution
2021-12-20 11:50:23 +01:00
Anurag Chauhan
619bd129a7
Merge pull request #1314 from actions/partner_templates
...
Merge partner templates to main branch
2021-12-17 22:11:22 +05:30
Anurag Chauhan
7eb13f680a
Merge branch 'main' of https://github.com/actions/starter-workflows into partner_templates
2021-12-16 10:55:26 +00:00
Anurag Chauhan
73a17a51b5
deleting azure.yml
2021-12-16 10:55:17 +00:00
Matt Moore
00db25fc1e
Enable keyless signing for private repos. ( #1295 )
...
Now that cosign 1.4 is out, we can perform keyless signing without panicking on private images (and without `--force` uploading to Rekor).
Signed-off-by: Matt Moore <mattmoor@chainguard.dev >
2021-12-13 15:17:02 -05:00
Anurag Chauhan
5bd8eb4344
Merge branch 'main' of https://github.com/actions/starter-workflows into partner_templates
2021-12-09 11:32:59 +00:00
Anurag Chauhan
9c27271e2f
Merge pull request #1298 from actions/anuragc617/fix_az_order
...
Renaming azure template to fix the order
2021-12-08 12:48:11 +05:30
Anurag Chauhan
17c64f97fe
resolving comments
2021-12-08 05:01:06 +00:00
Anurag Chauhan
c059d06679
renaming azure template to fix the order
2021-12-07 14:16:20 +00:00
Ana Armas Romero
432e3e3e74
Merge pull request #1278 from actions/veracode_workflow
...
Add veracode workflow
2021-12-07 11:52:25 +01:00
Ana Armas Romero
75ecfa0bae
Merge branch 'main' into veracode_workflow
2021-12-07 11:50:58 +01:00
anaarmas
1c56988c5d
remove unnecessary uses of the upload-artifact action and improve input file name
2021-12-07 11:35:26 +01:00
Matt Moore
60d206d090
Have the starter docker-publish action sign digests. ( #1255 )
...
* Have the starter `docker-publish` action sign digests.
This change installs `sigstore/cosign` using the `cosign-installer` action,
and uses sigstore's "keyless" signing process to sign the resulting image
digest using the action's identity token (see: `id-token: write`).
Signed-off-by: Matt Moore <mattomata@gmail.com >
* Fully qualify the digest, add setup-buildx-action as workaround
* Drop --force, add public repo check
* Use built-in 'private' bit
2021-12-06 22:35:19 +05:30
Nick Fyson
d67515a20c
Merge pull request #1200 from abirismyname/adding-pmd-workflow
...
Adding pmd
2021-12-03 18:42:12 +00:00
Abir Majumdar
4e6641ed74
Updating pmd logo
2021-12-03 13:19:43 -05:00
Nick Fyson
f46fcd0e80
Merge branch 'main' into adding-pmd-workflow
2021-12-03 16:13:55 +00:00
Abir Majumdar
649bca8dab
Updating logo and adding sha to workflow
2021-12-03 10:33:18 -05:00
Daz DeBoer
f7b1f1515d
Use gradle-build-action in starter workflows ( #1237 )
...
The `gradle-build-action` provides enhanced execution and caching functionality for Gradle.
This change updates starter workflows to use `v2.0.0` of `gradle-build-action`.
Improvements over invoking Gradle directly include:
- Easier to run the workflow with a particular Gradle version
- More sophisticated and more efficient caching of Gradle User Home between invocations
- Detailed reporting of cache usage and cache configuration options
- Automatic capture of Build Scan links
Co-authored-by: Josh Gross <joshmgross@github.com >
2021-12-02 17:22:55 -05:00
Abir Majumdar
2863ef2206
Merge branch 'main' into adding-pmd-workflow
2021-12-02 08:46:08 -05:00
Marcel Wagner
9920cac8e9
Update text flow for cmake comment ( #1054 )
2021-12-02 09:21:29 +05:30
Jason Freeberg
a48ef3a643
Update azure-webapps-node.yml ( #1282 )
2021-12-01 20:52:36 -05:00
Abir Majumdar
435b265ae0
Removing dupe
2021-12-01 17:02:40 -05:00
Abir Majumdar
3fd42f21fc
Merge branch 'main' into adding-pmd-workflow
2021-12-01 16:05:16 -05:00
Abir Majumdar
d2bba6f2d9
Adding icon
2021-12-01 16:03:49 -05:00
Abir Majumdar
ce771c75d8
Referencing new official PMD github action
2021-12-01 15:50:22 -05:00
Myles Borins
4238ac653e
chore: split npm publish into 2 workflows ( #1281 )
...
Currently we suggest that folks dual publish to both npm + gpr.
There are a large number of edge cases related to doing this and IMHO it is
not the best practice. Let's make two separate workflows.
2021-12-01 14:38:35 -05:00
Nick Fyson
7ebee84fa6
Merge pull request #1262 from apisec-inc/master
...
Added starter workflow to help get started with APIsec-Scan code-scanning Action
2021-12-01 12:45:02 +00:00
Anurag Chauhan
a8de83bc48
Merge pull request #1268 from actions/update_azure_py_webapp_cache
...
Updating azure partner templates to use commitId for 3rd party actions and setup actions cache.
2021-12-01 15:19:00 +05:30
abdul-hai-apisec
e99eb117c5
Merge remote-tracking branch 'origin/master'
2021-12-01 13:44:28 +05:30
abdul-hai-apisec
3f39a5a76b
Removed the unwanted space in actions file.
...
Updated the logo to have only the shield portion.
2021-12-01 13:27:02 +05:30
anaarmas
b629998430
replace unnecessary actions with shell commands
2021-11-30 09:56:40 +01:00
abdul-hai-apisec
fa053f9bf1
Merge branch 'main' into master
2021-11-30 12:24:56 +05:30
anaarmas
1a37cd5345
add veracode workflow
2021-11-29 11:49:33 +01:00
Anurag Chauhan
3258466b26
Adding commit sha for 3rd party actions
2021-11-29 08:51:54 +00:00
Nick Fyson
a85155b04a
Merge pull request #1266 from actions/detekt_workflow
...
Add Detekt workflow template
2021-11-25 10:15:32 +00:00
Nick Fyson
e1db44513b
Merge branch 'main' into detekt_workflow
2021-11-25 10:07:09 +00:00
Anurag Chauhan
b4ee598043
use setup cache option instead of action
2021-11-25 10:03:14 +00:00
Anurag Chauhan
cb87b05b73
Merge pull request #1162 from JasonFreeberg/partner_templates
...
Add partner templates for Azure Web Apps
2021-11-25 12:03:45 +05:30
Jason Freeberg
1a67e08a9e
Update azure-webapps-container.yml
2021-11-24 15:58:25 -08:00
Jason Freeberg
278aa7a82e
Add dependency caching for .NET, Node, PHP, and Python workflows
2021-11-24 14:26:16 -08:00
Jason Freeberg
8fd6550c33
Revert overwrite from upstream pull
2021-11-24 14:20:00 -08:00
Jason Freeberg
b9fd04a8cf
Merge remote-tracking branch 'upstream/partner_templates' into partner_templates
2021-11-24 12:13:19 -08:00
Anurag Chauhan
2d4fbbba8f
Merge pull request #1259 from FrodoTheTrue/update-google-deployment-2
...
Update google deployment starter workflow (partner_templates)
2021-11-24 15:47:21 +05:30
Anurag Chauhan
12aae3647b
Merge branch 'partner_templates' into update-google-deployment-2
2021-11-24 13:38:23 +05:30
Anurag Chauhan
a96cff48f1
Merge pull request #1207 from gambtho/thgamble/aksstarter
...
Deploy an application to AKS
2021-11-24 13:37:33 +05:30
anaarmas
c4dadecc05
find a way to pin the SHA for detekt workflow template
2021-11-23 21:14:53 +01:00
abdul-hai-apisec
6439d558f4
Updated the names as per the pull request checklist.
2021-11-22 21:14:54 +05:30
abdul-hai-apisec
499e38bc3e
Added starter workflow to help you get started with APIsec-Scan Actions.
2021-11-22 20:35:15 +05:30
Fedor Isakov
28856d6071
Update google deployment starter workflow
2021-11-19 20:46:53 +03:00
anaarmas
42dcf88eb9
add detekt workflow
2021-11-19 16:41:15 +01:00
Tom Gamble
2b3dac02b4
Merge branch 'partner_templates' into thgamble/aksstarter
2021-11-18 10:10:38 -05:00
gambtho
11147495c0
variable cleanup and comment additions
2021-11-18 07:30:10 -05:00
Jason Freeberg
757758750a
Merge remote-tracking branch 'upstream/partner_templates' into partner_templates
2021-11-16 09:45:39 -08:00
Jason Freeberg
214aeaaafe
Update quickstart link
2021-11-16 09:43:18 -08:00
Ashwin Sangem
4f8abda415
Updated the azure properties file to the main branch version. ( #1251 )
...
* Added Cloudrail according to instructions and existing examples
* Adding Cloudrail according to documentation and examples
* Oops
* Add original Fortify on Demand workflow
* Update Fortify on Demand workflow
* Update Fortify on Demand supported languages
* Add 3rd-party GitHub Actions disclaimer
* Sysdig Secure Inline Scan with SARIF report to starter workflows
* Added some extra comments, Github Actions V2 and changed env vars
* Reviews from PR #1110
* Adding 'Dockerfile' to category list
* Update according to PR review comments
* File renames as requested in PR comments
* Revert "Azure Data Factory CI starter workflow (#1111 )" (#1146 )
This reverts commit 7f30309cce .
* use env variables for user-set values (#1117 )
Co-authored-by: Josh Gross <joshmgross@github.com >
* Apply suggestions from nickfyson's code review
Co-authored-by: Nick Fyson <nickfyson@github.com >
* removing "deployment" templates from sync-ghes (#1127 )
* Update code-scanning/properties/sysdig-scan.properties.json
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Update code-scanning/properties/sysdig-scan.properties.json
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Changed svg logo
* Rename sysdig.svg to sysdig-scan.svg
* Switched svg logo (again) for a better fit
* Rename fortify.json to fortify.properties.json
* Correct character-case of "c" in Cloudrail
* AWS template also used Docker
* trigger on push instead of release (#1157 )
Co-authored-by: Josh Gross <joshmgross@github.com >
* Adding MobSF starter workflow
* Adhering to pull request guidelines
* python: update to use python 3.10
Signed-off-by: Rui Chen <rui@chenrui.dev >
* Added new templates for 3 clouds.
* Revert "Added new templates for 3 clouds."
This reverts commit c765d6316f .
* Add ruby and update workflow
* Add workflow for Microsoft C++ Code Analysis
* Updated action to meet guidelines
* quote the version strings
* correct typo in msvc.properties.json
* Update codeql.properties.json
* Update code-scanning/properties/codeql.properties.json
Co-authored-by: Arthur Baars <arthur@semmle.com >
* Update codeql.properties.json
* Update codeql.properties.json
* Update code-scanning/mobsf.yml
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Update code-scanning/properties/mobsf.properties.json
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Fixed typo in workflow that will cause every run to fail
* Update commit SHA
* r: use setup-r@1 and include r@4 for starter (#1169 )
* r: use setup-r@1 and include r@4 for starter
Signed-off-by: Rui Chen <rui@chenrui.dev >
* use sha instead of tag for external action
Co-authored-by: Josh Gross <joshmgross@github.com >
Co-authored-by: Josh Gross <joshmgross@github.com >
* elixir: refresh dependencies (#1212 )
- setup action got renamed into `setup-beam`
- update elixir and erlang versions
* Updated to main branch version.
Co-authored-by: Yoni Leitersdorf <y@indeni.com >
Co-authored-by: Ruud Senden <ruud.senden@microfocus.com >
Co-authored-by: Ruud Senden <8635138+rsenden@users.noreply.github.com >
Co-authored-by: Manuel Boira Cuevas <manuel.boira@MacBook-Pro.local >
Co-authored-by: manuelbcd <manuel.boira@sysdig.com >
Co-authored-by: Nick Fyson <nickfyson@github.com >
Co-authored-by: Sarah Edwards <skedwards88@github.com >
Co-authored-by: Josh Gross <joshmgross@github.com >
Co-authored-by: Aparna Ravindra <82894348+aparna-ravindra@users.noreply.github.com >
Co-authored-by: manuelbcd <manuelbcd@gmail.com >
Co-authored-by: Abir Majumdar <abirismyname@github.com >
Co-authored-by: Rui Chen <rui@chenrui.dev >
Co-authored-by: David Verdeguer <daverlo@github.com >
Co-authored-by: Daniel Winsor <danwin@microsoft.com >
Co-authored-by: David Verdeguer <47184891+Daverlo@users.noreply.github.com >
Co-authored-by: Arthur Baars <arthur@semmle.com >
Co-authored-by: Abir Majumdar <83433840+abirismyname@users.noreply.github.com >
Co-authored-by: Marco Gario <marcogario@github.com >
Co-authored-by: Andy McKay <andymckay@github.com >
2021-11-15 18:03:36 +05:30
Ashwin Sangem
b1b3ae86ee
Sync partner_templates with the main Branch. ( #1250 )
...
* Added Cloudrail according to instructions and existing examples
* Adding Cloudrail according to documentation and examples
* Oops
* Add original Fortify on Demand workflow
* Update Fortify on Demand workflow
* Update Fortify on Demand supported languages
* Add 3rd-party GitHub Actions disclaimer
* Sysdig Secure Inline Scan with SARIF report to starter workflows
* Added some extra comments, Github Actions V2 and changed env vars
* Reviews from PR #1110
* Adding 'Dockerfile' to category list
* Update according to PR review comments
* File renames as requested in PR comments
* Revert "Azure Data Factory CI starter workflow (#1111 )" (#1146 )
This reverts commit 7f30309cce .
* use env variables for user-set values (#1117 )
Co-authored-by: Josh Gross <joshmgross@github.com >
* Apply suggestions from nickfyson's code review
Co-authored-by: Nick Fyson <nickfyson@github.com >
* removing "deployment" templates from sync-ghes (#1127 )
* Update code-scanning/properties/sysdig-scan.properties.json
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Update code-scanning/properties/sysdig-scan.properties.json
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Changed svg logo
* Rename sysdig.svg to sysdig-scan.svg
* Switched svg logo (again) for a better fit
* Rename fortify.json to fortify.properties.json
* Correct character-case of "c" in Cloudrail
* AWS template also used Docker
* trigger on push instead of release (#1157 )
Co-authored-by: Josh Gross <joshmgross@github.com >
* Adding MobSF starter workflow
* Adhering to pull request guidelines
* python: update to use python 3.10
Signed-off-by: Rui Chen <rui@chenrui.dev >
* Added new templates for 3 clouds.
* Revert "Added new templates for 3 clouds."
This reverts commit c765d6316f .
* Add ruby and update workflow
* Add workflow for Microsoft C++ Code Analysis
* Updated action to meet guidelines
* quote the version strings
* correct typo in msvc.properties.json
* Update codeql.properties.json
* Update code-scanning/properties/codeql.properties.json
Co-authored-by: Arthur Baars <arthur@semmle.com >
* Update codeql.properties.json
* Update codeql.properties.json
* Update code-scanning/mobsf.yml
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Update code-scanning/properties/mobsf.properties.json
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Fixed typo in workflow that will cause every run to fail
* Update commit SHA
* r: use setup-r@1 and include r@4 for starter (#1169 )
* r: use setup-r@1 and include r@4 for starter
Signed-off-by: Rui Chen <rui@chenrui.dev >
* use sha instead of tag for external action
Co-authored-by: Josh Gross <joshmgross@github.com >
Co-authored-by: Josh Gross <joshmgross@github.com >
* elixir: refresh dependencies (#1212 )
- setup action got renamed into `setup-beam`
- update elixir and erlang versions
Co-authored-by: Yoni Leitersdorf <y@indeni.com >
Co-authored-by: Ruud Senden <ruud.senden@microfocus.com >
Co-authored-by: Ruud Senden <8635138+rsenden@users.noreply.github.com >
Co-authored-by: Manuel Boira Cuevas <manuel.boira@MacBook-Pro.local >
Co-authored-by: manuelbcd <manuel.boira@sysdig.com >
Co-authored-by: Nick Fyson <nickfyson@github.com >
Co-authored-by: Sarah Edwards <skedwards88@github.com >
Co-authored-by: Josh Gross <joshmgross@github.com >
Co-authored-by: Aparna Ravindra <82894348+aparna-ravindra@users.noreply.github.com >
Co-authored-by: manuelbcd <manuelbcd@gmail.com >
Co-authored-by: Abir Majumdar <abirismyname@github.com >
Co-authored-by: Rui Chen <rui@chenrui.dev >
Co-authored-by: David Verdeguer <daverlo@github.com >
Co-authored-by: Daniel Winsor <danwin@microsoft.com >
Co-authored-by: David Verdeguer <47184891+Daverlo@users.noreply.github.com >
Co-authored-by: Arthur Baars <arthur@semmle.com >
Co-authored-by: Abir Majumdar <83433840+abirismyname@users.noreply.github.com >
Co-authored-by: Marco Gario <marcogario@github.com >
Co-authored-by: Andy McKay <andymckay@github.com >
2021-11-15 13:47:17 +05:30
Ashwin Sangem
2f7dd74318
Dummy azure templates ( #1249 )
...
* Rename "azure.yml" to Node-specific name
* Add templates and properties for other languages
* Add workflow for .NET Core
* Add workflow and properties file for PHP
* Updates from PR review
* Fix EOF
* Use latest versions
* Renamed the file appropriately.
* Put the azure file back.
* Added azure back.
* Revert "Dummy azure templates for showcasing the CD Ordering Behavior (#1194 )"
This reverts commit 9ce2a5b56f .
Co-authored-by: Jason Freeberg <jafreebe@microsoft.com >
2021-11-15 13:40:30 +05:30
Tom Gamble
50fcc151be
Update aks.properties.json
2021-11-12 07:11:40 -05:00
Abir Majumdar
ec35be8871
Update psalm.properties.json
2021-11-10 11:31:39 -05:00
Tom Gamble
d739e93e5e
Update aks.properties.json
2021-11-09 07:01:43 -05:00
Jason Freeberg
5354877aa0
enable caching
2021-11-03 18:10:02 -07:00
Jason Freeberg
a561392dff
Update azure-webapps-container.yml
2021-11-03 18:02:06 -07:00
Jason Freeberg
69f26d5fd6
Copy/paste error
2021-11-03 17:58:38 -07:00
Tom Gamble
cde6fc6c14
Update aks.properties.json
2021-11-01 09:41:55 -04:00
gambtho
644f0a59aa
step names and registry path
2021-10-28 23:05:42 -04:00
gambtho
de6c8cbcf0
add aks starter
2021-10-28 22:58:17 -04:00
Abir Majumdar
eeb84c9ae6
Adding Psalm PHP scanning to Starter Workflows
2021-10-28 10:55:20 -04:00
Anurag Chauhan
abf0c13931
Merge pull request #1187 from simonaco/partner_templates
...
Add partner templates for Azure Static Web Apps
2021-10-28 11:35:52 +05:30
Mattias Cibien
0c5984ebcf
Merge branch 'main' into patch-1
2021-10-27 22:51:46 +02:00
Abir Majumdar
c3c12f1950
Adding pmd
2021-10-27 15:35:18 -04:00
Jason Freeberg
e1ca1f58be
typos
2021-10-27 12:23:24 -07:00
Jason Freeberg
e176cd52cd
Add more tech stack metadata to the properties files
2021-10-27 12:20:29 -07:00
Jason Freeberg
3893e3d7c8
Add setup instructions to the top
2021-10-27 12:20:09 -07:00
Mattias Cibien
25f4fd1b5f
Fix dotnet-desktop template
...
Removed environment variable which is not currently used and makes the build fail
2021-10-27 16:24:24 +02:00
Simona Cotin
767ba11df2
update action version to v1
2021-10-26 13:15:05 +02:00
Simona Cotin
464fcecb39
Merge branch 'actions:partner_templates' into partner_templates
2021-10-26 13:13:11 +02:00
Ashwin Sangem
c0fe29b09d
Added Azure Id template back. ( #1195 )
...
* Rename "azure.yml" to Node-specific name
* Add templates and properties for other languages
* Add workflow for .NET Core
* Add workflow and properties file for PHP
* Updates from PR review
* Fix EOF
* Use latest versions
* Renamed the file appropriately.
* Put the azure file back.
* Added azure back.
Co-authored-by: Jason Freeberg <jafreebe@microsoft.com >
2021-10-25 22:06:21 +05:30
Ashwin Sangem
9ce2a5b56f
Dummy azure templates for showcasing the CD Ordering Behavior ( #1194 )
...
* Rename "azure.yml" to Node-specific name
* Add templates and properties for other languages
* Add workflow for .NET Core
* Add workflow and properties file for PHP
* Updates from PR review
* Fix EOF
* Use latest versions
* Renamed the file appropriately.
Co-authored-by: Jason Freeberg <jafreebe@microsoft.com >
2021-10-25 21:16:06 +05:30
Ashwin Sangem
87a12c3391
Undo bug bash changes and Sync with the main branch ( #1193 )
...
* Added Cloudrail according to instructions and existing examples
* Adding Cloudrail according to documentation and examples
* Oops
* Add original Fortify on Demand workflow
* Update Fortify on Demand workflow
* Update Fortify on Demand supported languages
* Add 3rd-party GitHub Actions disclaimer
* Sysdig Secure Inline Scan with SARIF report to starter workflows
* Added some extra comments, Github Actions V2 and changed env vars
* Reviews from PR #1110
* Adding 'Dockerfile' to category list
* Update according to PR review comments
* File renames as requested in PR comments
* Revert "Azure Data Factory CI starter workflow (#1111 )" (#1146 )
This reverts commit 7f30309cce .
* use env variables for user-set values (#1117 )
Co-authored-by: Josh Gross <joshmgross@github.com >
* Apply suggestions from nickfyson's code review
Co-authored-by: Nick Fyson <nickfyson@github.com >
* removing "deployment" templates from sync-ghes (#1127 )
* Update code-scanning/properties/sysdig-scan.properties.json
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Update code-scanning/properties/sysdig-scan.properties.json
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Changed svg logo
* Rename sysdig.svg to sysdig-scan.svg
* Switched svg logo (again) for a better fit
* Rename fortify.json to fortify.properties.json
* Correct character-case of "c" in Cloudrail
* AWS template also used Docker
* trigger on push instead of release (#1157 )
Co-authored-by: Josh Gross <joshmgross@github.com >
* Added new templates for 3 clouds.
* Revert "Added new templates for 3 clouds."
This reverts commit c765d6316f .
* Add workflow for Microsoft C++ Code Analysis
* Updated action to meet guidelines
* correct typo in msvc.properties.json
* Removed the dummy templates used in bug_bash.
Co-authored-by: Yoni Leitersdorf <y@indeni.com >
Co-authored-by: Ruud Senden <ruud.senden@microfocus.com >
Co-authored-by: Ruud Senden <8635138+rsenden@users.noreply.github.com >
Co-authored-by: Manuel Boira Cuevas <manuel.boira@MacBook-Pro.local >
Co-authored-by: manuelbcd <manuel.boira@sysdig.com >
Co-authored-by: Nick Fyson <nickfyson@github.com >
Co-authored-by: Sarah Edwards <skedwards88@github.com >
Co-authored-by: Josh Gross <joshmgross@github.com >
Co-authored-by: Aparna Ravindra <82894348+aparna-ravindra@users.noreply.github.com >
Co-authored-by: manuelbcd <manuelbcd@gmail.com >
Co-authored-by: Daniel Winsor <danwin@microsoft.com >
2021-10-25 19:30:04 +05:30
Jason Freeberg
c78dd727e9
Use latest versions
2021-10-24 21:47:00 -07:00
Jason Freeberg
b5113430d9
Fix EOF
2021-10-24 21:46:13 -07:00
Jason Freeberg
704eb638ce
Updates from PR review
2021-10-24 21:45:21 -07:00
Jason Freeberg
a702d187d1
Add workflow and properties file for PHP
2021-10-24 21:37:36 -07:00
Simona Cotin
27ebc235ee
Add partner templates for Azure Static Web Apps
2021-10-22 13:00:26 +02:00
Ashwin Sangem
39293c2452
Deleting gcp dummy templates. ( #1186 )
2021-10-22 16:24:02 +05:30
Bishal Prasad
cd0b591526
Update google_python.properties.json
2021-10-22 16:13:36 +05:30
Bishal Prasad
4abed744e3
Update azure_docker.properties.json
2021-10-22 16:12:34 +05:30
Bishal Prasad
7b8fcf2d84
Rename aws_java.yaml to aws_node.yaml
2021-10-22 16:11:57 +05:30
Bishal Prasad
2b39072b92
Rename aws_java.properties.json to aws_node.properties.json
2021-10-22 16:11:39 +05:30
Bishal Prasad
34a94290c1
Update aws_java.properties.json
2021-10-22 16:10:51 +05:30
Bishal Prasad
41027f9cb5
Update aws_dockerfile.properties.json
2021-10-22 16:08:40 +05:30
Bishal Prasad
a7e746ef4e
Rename aws_node.yaml to aws_java.yaml
2021-10-22 16:01:43 +05:30
Bishal Prasad
62a3686226
Rename aws_node.properties.json to aws_java.properties.json
2021-10-22 16:00:55 +05:30
Bishal Prasad
ff38066101
Create aws_node.properties.json
2021-10-22 16:00:18 +05:30
Bishal Prasad
1ff952c678
Update aws_node.properties.json
2021-10-22 16:00:12 +05:30
Bishal Prasad
1d19515d95
Update google_java.properties.json
2021-10-22 15:58:29 +05:30
Bishal Prasad
c3f7e66294
Update azure_docker.properties.json
2021-10-22 15:53:33 +05:30
Bishal Prasad
d6e33d5f35
fix dummy template names ( #1185 )
2021-10-22 15:48:49 +05:30
Ashwin Sangem
a3270e70de
Add files via upload
2021-10-22 15:13:09 +05:30
Ashwin Sangem
0f29a0acbb
Add files via upload
2021-10-22 15:12:17 +05:30
Ashwin Sangem
4e20b52618
Sync partner_templates branch with main ( #1184 )
...
* Added Cloudrail according to instructions and existing examples
* Adding Cloudrail according to documentation and examples
* Oops
* Add original Fortify on Demand workflow
* Update Fortify on Demand workflow
* Update Fortify on Demand supported languages
* Add 3rd-party GitHub Actions disclaimer
* Sysdig Secure Inline Scan with SARIF report to starter workflows
* Added some extra comments, Github Actions V2 and changed env vars
* Reviews from PR #1110
* Adding 'Dockerfile' to category list
* Update according to PR review comments
* File renames as requested in PR comments
* Revert "Azure Data Factory CI starter workflow (#1111 )" (#1146 )
This reverts commit 7f30309cce .
* use env variables for user-set values (#1117 )
Co-authored-by: Josh Gross <joshmgross@github.com >
* Apply suggestions from nickfyson's code review
Co-authored-by: Nick Fyson <nickfyson@github.com >
* removing "deployment" templates from sync-ghes (#1127 )
* Update code-scanning/properties/sysdig-scan.properties.json
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Update code-scanning/properties/sysdig-scan.properties.json
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Changed svg logo
* Rename sysdig.svg to sysdig-scan.svg
* Switched svg logo (again) for a better fit
* Rename fortify.json to fortify.properties.json
* Correct character-case of "c" in Cloudrail
* AWS template also used Docker
* trigger on push instead of release (#1157 )
Co-authored-by: Josh Gross <joshmgross@github.com >
* Added new templates for 3 clouds.
* Revert "Added new templates for 3 clouds."
This reverts commit c765d6316f .
* Add workflow for Microsoft C++ Code Analysis
* Updated action to meet guidelines
* correct typo in msvc.properties.json
Co-authored-by: Yoni Leitersdorf <y@indeni.com >
Co-authored-by: Ruud Senden <ruud.senden@microfocus.com >
Co-authored-by: Ruud Senden <8635138+rsenden@users.noreply.github.com >
Co-authored-by: Manuel Boira Cuevas <manuel.boira@MacBook-Pro.local >
Co-authored-by: manuelbcd <manuel.boira@sysdig.com >
Co-authored-by: Nick Fyson <nickfyson@github.com >
Co-authored-by: Sarah Edwards <skedwards88@github.com >
Co-authored-by: Josh Gross <joshmgross@github.com >
Co-authored-by: Aparna Ravindra <82894348+aparna-ravindra@users.noreply.github.com >
Co-authored-by: manuelbcd <manuelbcd@gmail.com >
Co-authored-by: Daniel Winsor <danwin@microsoft.com >
2021-10-22 14:47:00 +05:30
Jason Freeberg
4fad808870
Add workflow for .NET Core
2021-10-15 15:47:30 -07:00
Jason Freeberg
e59c11c494
Add templates and properties for other languages
2021-10-15 15:33:45 -07:00
Jason Freeberg
21775ad05b
Rename "azure.yml" to Node-specific name
2021-10-15 15:32:54 -07:00
Ashwin Sangem
cbd5b645f1
Merge pull request #1110 from manuelbcd/main ( #1155 )
...
* Added Cloudrail according to instructions and existing examples
* Adding Cloudrail according to documentation and examples
* Oops
* Add original Fortify on Demand workflow
* Update Fortify on Demand workflow
* Update Fortify on Demand supported languages
* Add 3rd-party GitHub Actions disclaimer
* Sysdig Secure Inline Scan with SARIF report to starter workflows
* Added some extra comments, Github Actions V2 and changed env vars
* Reviews from PR #1110
* Adding 'Dockerfile' to category list
* Update according to PR review comments
* File renames as requested in PR comments
* Revert "Azure Data Factory CI starter workflow (#1111 )" (#1146 )
This reverts commit 7f30309cce .
* use env variables for user-set values (#1117 )
Co-authored-by: Josh Gross <joshmgross@github.com >
* Apply suggestions from nickfyson's code review
Co-authored-by: Nick Fyson <nickfyson@github.com >
* removing "deployment" templates from sync-ghes (#1127 )
* Update code-scanning/properties/sysdig-scan.properties.json
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Update code-scanning/properties/sysdig-scan.properties.json
Co-authored-by: Nick Fyson <nickfyson@github.com >
* Changed svg logo
* Rename sysdig.svg to sysdig-scan.svg
* Switched svg logo (again) for a better fit
* Rename fortify.json to fortify.properties.json
Co-authored-by: Yoni Leitersdorf <y@indeni.com >
Co-authored-by: Ruud Senden <ruud.senden@microfocus.com >
Co-authored-by: Ruud Senden <8635138+rsenden@users.noreply.github.com >
Co-authored-by: Manuel Boira Cuevas <manuel.boira@MacBook-Pro.local >
Co-authored-by: manuelbcd <manuel.boira@sysdig.com >
Co-authored-by: Nick Fyson <nickfyson@github.com >
Co-authored-by: Sarah Edwards <skedwards88@github.com >
Co-authored-by: Josh Gross <joshmgross@github.com >
Co-authored-by: Aparna Ravindra <82894348+aparna-ravindra@users.noreply.github.com >
Co-authored-by: manuelbcd <manuelbcd@gmail.com >
2021-10-08 17:31:42 +05:30
fredster33
2e92f3a665
Merge branch 'actions:main' into main
2021-09-13 20:00:15 -07:00
fredster33
900a020464
Fix typo
2021-08-13 17:09:48 -07:00