Commit graph

7 commits

Author SHA1 Message Date
dependabot[bot]
8bdd5deb1f
Bump actions/checkout from 2.3.4 to 2.4.0 (#2096)
Bumps [actions/checkout](https://github.com/actions/checkout) from 2.3.4 to 2.4.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2.3.4...v2.4.0)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-11-10 11:53:31 -06:00
Zack Koppert
42ac0c1f0f
switch to main branch (#2010)
* switch to main branch

* switch from master to main

* switch default branch to main

* switch to main branch

* switch to main branch

* switch to main branch

* switch to main branch

* switch to main branch

* switch to main branch

* switch to main branch

* switch to main branch

* switch to main branch

* switch to main branch

* make comment reflect code

* switch to main branch
2021-10-01 12:57:26 -07:00
Lukas Gravley
ab24b82199
Adding actionlint (#1775)
* Adding action lint

* adding tests

* adding tests

* Update Dockerfile

Co-authored-by: Masaya Suzuki <15100604+massongit@users.noreply.github.com>

* cleanup name

* fix test

* typo

* fix file name

* fix our own errors

* more cleanup

* angry

* make it happy

* stop double jobs

Co-authored-by: Masaya Suzuki <15100604+massongit@users.noreply.github.com>
2021-07-19 09:28:49 -05:00
Zack Koppert
786e7056de
Reinstate Trivy with no blocks for vulnerabilities found (#1455)
* enable trivy

* enable docker build

* Add audit fix to patch vulns

* exit success on vulnerabilities found
2021-04-17 14:50:23 -07:00
Zack Koppert
768ab9ac38
Update trivy.yml 2021-04-05 17:00:29 -07:00
Teppei Fukuda
d1c8432796
chore(ci/trivy): replace script with action (#1355)
* chore: replace script with action

* delete trivy script

* more

Co-authored-by: Admiral Awkbar <admiralawkbar@github.com>
2021-03-11 09:15:07 -06:00
Zack Koppert
35e2d160a4
Add trivy scans for container security (#1209)
* Create trivy.yml

* Add descriptive names

* Add fs mode to catch package.lock issues

* use script to get around timeout

* use script to get around timeout

* set it

* set it

* update deps

* Align with comment style

* fix headeer

* npm audit fix to patch vulnerabilities

Signed-off-by: Zack Koppert <zkoppert@github.com>

Co-authored-by: Lukas Gravley <admiralawkbar@github.com>
2021-02-17 16:03:30 -06:00