From 60d79fa364031ca06e1f99cf6b4571c372982697 Mon Sep 17 00:00:00 2001 From: Luciano Balmaceda Date: Fri, 24 May 2019 15:11:45 -0300 Subject: [PATCH 1/5] fix CI badge --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 96be0d4..9b3d0c5 100644 --- a/README.md +++ b/README.md @@ -1,6 +1,6 @@ # Guardian Java -[![CircleCI](circle-ci-badge)](circle-ci-url) +[![CircleCI][circle-ci-badge]][circle-ci-url] [![MIT][mit-badge]][mit-url] [![Maven][maven-badge]][maven-url] [![JCenter][jcenter-badge]][jcenter-url] From 70f7a5a5f6a80f70e4532c0eff87696e3d7456ef Mon Sep 17 00:00:00 2001 From: jayhelton Date: Wed, 27 Jul 2022 09:46:40 -0400 Subject: [PATCH 2/5] Update config.yml --- .circleci/config.yml | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/.circleci/config.yml b/.circleci/config.yml index 9615ec3..fead6af 100644 --- a/.circleci/config.yml +++ b/.circleci/config.yml @@ -1,4 +1,7 @@ -version: 2 +version: 2.1 +orbs: + codecov: codecov/codecov@3 + jobs: build: docker: @@ -14,10 +17,7 @@ jobs: - v1-dependencies- # run tests! - run: ./gradlew clean check jacocoTestReport --continue --console=plain - - run: - name: Upload Coverage - when: on_success - command: bash <(curl -s https://codecov.io/bash) -Z -C $CIRCLE_SHA1 + - codecov/upload - save_cache: paths: - ~/.m2 @@ -25,4 +25,4 @@ jobs: environment: GRADLE_OPTS: '-Dorg.gradle.jvmargs="-Xmx2048m -XX:+HeapDumpOnOutOfMemoryError"' _JAVA_OPTIONS: "-Xms512m -Xmx1024m" - TERM: dumb \ No newline at end of file + TERM: dumb From 03073dd5a04c06052832eb724633eec29868c9a1 Mon Sep 17 00:00:00 2001 From: jayhelton Date: Thu, 28 Jul 2022 08:03:37 -0400 Subject: [PATCH 3/5] Empty-Commit From 6926037e7662ed437597334f9220c6008caed70a Mon Sep 17 00:00:00 2001 From: "sre-57-opslevel[bot]" <113727212+sre-57-opslevel[bot]@users.noreply.github.com> Date: Mon, 17 Oct 2022 13:00:57 +0000 Subject: [PATCH 4/5] Upload OpsLevel YAML --- opslevel.yml | 6 ++++++ 1 file changed, 6 insertions(+) create mode 100644 opslevel.yml diff --git a/opslevel.yml b/opslevel.yml new file mode 100644 index 0000000..1e2697e --- /dev/null +++ b/opslevel.yml @@ -0,0 +1,6 @@ +--- +version: 1 +repository: + owner: iam_mfa + tier: + tags: From 7d4b384a1fc637f6ddd13209f59377afc29edf3f Mon Sep 17 00:00:00 2001 From: crew-security Date: Thu, 19 Jan 2023 10:31:30 +0100 Subject: [PATCH 5/5] Add semgrep.yml ### Add semgrep.yml #### Description Adds an Semgrep YAML definition file semgrep.yml. This file allows Semgrep to automatically scan PR changes for vulnerabilities. #### References - Official Documentation: [Semgrep Documentation](https://semgrep.dev/docs/) #### Testing No testing is required from you as repository owners. --- .github/workflows/semgrep.yml | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) create mode 100644 .github/workflows/semgrep.yml diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml new file mode 100644 index 0000000..1ba433d --- /dev/null +++ b/.github/workflows/semgrep.yml @@ -0,0 +1,18 @@ +name: Semgrep + +on: + pull_request_target: {} + push: + branches: ["master", "main"] +jobs: + semgrep: + name: Scan + runs-on: ubuntu-latest + container: + image: returntocorp/semgrep + if: (github.actor != 'dependabot[bot]' && github.actor != 'snyk-bot') + steps: + - uses: actions/checkout@v3 + - run: semgrep ci + env: + SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}