forked from anchore/syft
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* main: (70 commits) fix: add php catalogers to all catalogers (anchore#1065) feat: add use-all-catalogers flag (anchore#1050) Updates parsing of `yarn.lock` to use `resolved` URLs that are pulled from yarn and npm registries (anchore#926) remove OSS Meetup message (anchore#1057) add pom.xml cataloger (anchore#1055) Add support for CBL-Mariner distroless images (anchore#1045) Add catalogers configuration (anchore#1038) add template output (anchore#1051) update stereoscope to latest version (anchore#1052) update zip_read_closer to incorporate zip64 support (anchore#1041) Add pacman (alpm) parser support (anchore#943) Update of README.md (anchore#1027) bump cosign to v1.9.0 to resolve reporting of GHSA-66x3-6cw3-v5gj (anchore#1025) add workflows to test new project automation (anchore#1023) improve LanguageByName and add unit tests (anchore#1034) Read Description from dpkg status files (anchore#996) Add announcement for Anchore OSS Virtual Meetup (anchore#1033) add main module field to go bin metadata (anchore#1026) Add filters to package cataloger (anchore#1021) change draft to false for release process (anchore#1016) ... Signed-off-by: Christopher Phillips <christopher.phillips@anchore.com>
- Loading branch information
Showing
364 changed files
with
14,060 additions
and
14,838 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,17 @@ | ||
# Uses https://github.com/actions/add-to-project example to add issues to Anchore OSS project | ||
name: Add issues to OSS project | ||
|
||
on: | ||
issues: | ||
types: | ||
- opened | ||
|
||
jobs: | ||
add-to-project: | ||
name: Add issue to project | ||
runs-on: ubuntu-latest | ||
steps: | ||
- uses: actions/add-to-project@main | ||
with: | ||
project-url: https://github.com/orgs/anchore/projects/22 | ||
github-token: ${{ secrets.CI_WRITE_GITHUB_TOKEN }} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,17 @@ | ||
# Uses https://github.com/actions/add-to-project example to add PR to Anchore OSS project | ||
name: Add pr to OSS project | ||
|
||
on: | ||
pull_request: | ||
types: | ||
- opened | ||
|
||
jobs: | ||
add-to-project: | ||
name: Add pr to project | ||
runs-on: ubuntu-latest | ||
steps: | ||
- uses: actions/add-to-project@main | ||
with: | ||
project-url: https://github.com/orgs/anchore/projects/22 | ||
github-token: ${{ secrets.CI_WRITE_GITHUB_TOKEN }} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,51 @@ | ||
name: PR for latest Stereoscope release | ||
on: | ||
schedule: | ||
- cron: "0 8 * * *" # 3 AM EST | ||
|
||
workflow_dispatch: | ||
|
||
env: | ||
GO_VERSION: "1.18.x" | ||
GO_STABLE_VERSION: true | ||
|
||
jobs: | ||
upgrade-stereoscope: | ||
runs-on: ubuntu-latest | ||
if: github.repository == 'anchore/syft' # only run for main repo | ||
steps: | ||
- uses: actions/checkout@v3 | ||
|
||
- uses: actions/setup-go@v2 | ||
with: | ||
go-version: ${{ env.GO_VERSION }} | ||
stable: ${{ env.GO_STABLE_VERSION }} | ||
|
||
- run: | | ||
LATEST_VERSION=$(git ls-remote https://github.com/anchore/stereoscope main | head -n1 | awk '{print $1;}') | ||
# update go.mod | ||
go get github.com/anchore/stereoscope@$LATEST_VERSION | ||
go mod tidy | ||
# export the version for use with create-pull-request | ||
echo "::set-output name=LATEST_VERSION::$LATEST_VERSION" | ||
id: latest-version | ||
- uses: tibdex/github-app-token@v1 | ||
id: generate-token | ||
with: | ||
app_id: ${{ secrets.TOKEN_APP_ID }} | ||
private_key: ${{ secrets.TOKEN_APP_PRIVATE_KEY }} | ||
|
||
- uses: peter-evans/create-pull-request@v4 | ||
with: | ||
signoff: true | ||
delete-branch: true | ||
branch: auto/latest | ||
labels: dependencies | ||
commit-message: "Update Stereoscope to ${{ steps.latest-version.outputs.LATEST_VERSION }}" | ||
title: "Update Stereoscope to ${{ steps.latest-version.outputs.LATEST_VERSION }}" | ||
body: | | ||
Update Stereoscope to ${{ steps.latest-version.outputs.LATEST_VERSION }} | ||
token: ${{ steps.generate-token.outputs.token }} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.