-
Notifications
You must be signed in to change notification settings - Fork 5.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Create devcontainer.json #2415
Open
Bgcvbb
wants to merge
1,206
commits into
actions:updae_azure_python_cache
Choose a base branch
from
Bgcvbb:patch-2
base: updae_azure_python_cache
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
Create devcontainer.json #2415
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Fix code-scanning filtering for relative paths
Update SOOS DAST Action Version
Add explanation on which value to use to scan Kotlin and TypeScript
Fix whitespace lint
Add Kotlin to CodeQL supported languages.
Fix and improve Hugo starter action
Starter Workflows for Azure Function App
Bumps [actions/stale](https://github.com/actions/stale) from 6 to 7. - [Release notes](https://github.com/actions/stale/releases) - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md) - [Commits](actions/stale@v6...v7) --- updated-dependencies: - dependency-name: actions/stale dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
…s/actions/stale-7 Bump actions/stale from 6 to 7
Since GitHub's deprecation of `set-ouput`, the SLSA reusable workflows needed to change. This PR updates them to the latest version. Fixes slsa-framework/slsa-github-generator#1302 Signed-off-by: Mihai Maruseac <[email protected]> Signed-off-by: Mihai Maruseac <[email protected]> Co-authored-by: Sampark Sharma <[email protected]>
* Update Scorecard naming occurences Signed-off-by: Gabriela Gutierrez <[email protected]> * Update Scorecard icon naming Signed-off-by: Gabriela Gutierrez <[email protected]> * Update Scorecard workflow naming Signed-off-by: Gabriela Gutierrez <[email protected]> Signed-off-by: Gabriela Gutierrez <[email protected]> Co-authored-by: Sampark Sharma <[email protected]>
* Added Bandit starter workflow and properties file. Python security scanner, Action by a Hubber, wraps free tool * Set icon name to one in the icons folder * Switched to Bandit's own SVG icon * Added workflow disclaimer * Fixed author name Co-authored-by: Sampark Sharma <[email protected]>
adding dependency graph team as an additional codeowner for the /code-scanning/ directory
Update CODEOWNERS
Update all Pages workflows to `actions/cache@v4` for `node20` compliance
removing extra whitespace
Update dependency-review.yml actions/checkout version, add common with: options, and add comments for dependency submission
- Bump version hashes to use `v3.0.0` of Gradle action - Bump to Node20-compatible versions of `actions/checkout` and `actions/setup-java` - Replace uses of `gradle/gradle-build-action` with `gradle/actions/setup-gradle` - Split "Setup Gradle" step out of "Run Gradle" steps - Add separate Job using `gradle/actions/dependency-submission` (flagged as optional) - Bump to setup JDK 17
- Remove "optional" flag from dependency-submission - Add example of running without Gradle wrapper - Link to action docs
Update for `gradle/[email protected]` release
* Update soos-dast-scan.yml * use major version syntax * code review * lint * Update soos-dast-scan.yml
also gave the workflow the appropriate permissions required, pull-requests: write
begone, whitespace Co-authored-by: Chad Bentz <[email protected]>
Changing default behavior to include comment summary in PR
Code Scanning shouldn't own `dependency-review.yml`
- Bump version hashes to use `gradle/actions/[email protected]` - Bump version hash to use `gradle/actions/[email protected]`
Update for `gradle/[email protected]` release
* Update dotnet.yml Updating versions * Update dotnet-desktop.yml Bumping versions * Update ci/dotnet-desktop.yml Co-authored-by: Alexis Abril <[email protected]> --------- Co-authored-by: Alexis Abril <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Pre-requisites
Please note that at this time we are only accepting new starter workflows for Code Scanning. Updates to existing starter workflows are fine.
Tasks
For all workflows, the workflow:
.yml
file with the language or platform as its filename, in lower, kebab-cased format (for example,docker-image.yml
). Special characters should be removed or replaced with words as appropriate (for example, "dotnet" instead of ".NET").GITHUB_TOKEN
so that the workflow runs successfully.For CI workflows, the workflow:
ci
directory.ci/properties/*.properties.json
file (for example,ci/properties/docker-publish.properties.json
).push
tobranches: [ $default-branch ]
andpull_request
tobranches: [ $default-branch ]
.release
withtypes: [ created ]
.docker-publish.yml
).For Code Scanning workflows, the workflow:
code-scanning
directory.code-scanning/properties/*.properties.json
file (for example,code-scanning/properties/codeql.properties.json
), with properties set as follows:name
: Name of the Code Scanning integration.creator
: Name of the organization/user producing the Code Scanning integration.description
: Short description of the Code Scanning integration.categories
: Array of languages supported by the Code Scanning integration.iconName
: Name of the SVG logo representing the Code Scanning integration. This SVG logo must be present in theicons
directory.push
tobranches: [ $default-branch, $protected-branches ]
andpull_request
tobranches: [ $default-branch ]
. We also recommend aschedule
trigger ofcron: $cron-weekly
(for example,codeql.yml
).Some general notes:
actions
organization, or