From 4c89bfa5d4258e087ef4e5e2dc061823dadae6fe Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Mon, 7 Feb 2022 12:05:58 +0500 Subject: [PATCH 01/22] Create codeql-analysis.yml --- .github/workflows/codeql-analysis.yml | 70 +++++++++++++++++++++++++++ 1 file changed, 70 insertions(+) create mode 100644 .github/workflows/codeql-analysis.yml diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml new file mode 100644 index 00000000..0d6252cf --- /dev/null +++ b/.github/workflows/codeql-analysis.yml @@ -0,0 +1,70 @@ +#For most projects, this workflow file will not need changing; you simply need + # to commit it to your repository. + # + # You may wish to alter this file to override the set of languages analyzed, + # or to provide custom queries or build logic. + # + # ******** NOTE ******** + # We have attempted to detect the languages in your repository. Please check + # the `language` matrix defined below to confirm you have the correct set of + # supported CodeQL languages. + # + name: "CodeQL" + + on: + push: + branches: [ main ] + pull_request: + # The branches below must be a subset of the branches above + branches: [ main ] + schedule: + - cron: '0 */12 * * *' + + jobs: + analyze: + name: Analyze + runs-on: ubuntu-latest + permissions: + actions: read + contents: read + security-events: write + + strategy: + fail-fast: false + matrix: + language: cpp,csharp,go,java,python,ruby + # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ] + # Learn more about CodeQL language support at https://git.io/codeql-language-support + + steps: + - name: Checkout repository + uses: actions/checkout@v2 + + # Initializes the CodeQL tools for scanning. + - name: Initialize CodeQL + uses: github/codeql-action/init@v1 + with: + languages: ${ matrix.language } + # If you wish to specify custom queries, you can do so here or in a config file. + # By default, queries listed here will override any specified in a config file. + # Prefix the list here with "+" to use these queries and those in the config file. + # queries: ./path/to/local/query, your-org/your-repo/queries@main + + # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). + # If this step fails, then you should remove it and run the build manually (see below) + - name: Autobuild + uses: github/codeql-action/autobuild@v1 + + # ℹī¸ Command-line programs to run using the OS shell. + # 📚 https://git.io/JvXDl + + # ✏ī¸ If the Autobuild fails above, remove it and uncomment the following three lines + # and modify them (or add more) to build your code if your project + # uses a compiled language + + #- run: | + # make bootstrap + # make release + + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v1 \ No newline at end of file From c172026bb962c487953004bb9d50c9fcad508a52 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Mon, 22 May 2023 12:17:48 +0500 Subject: [PATCH 02/22] Created semgrep vulnerability analysis file. --- .github/workflows/semgrep.yml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 .github/workflows/semgrep.yml diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml new file mode 100644 index 00000000..a7e98a50 --- /dev/null +++ b/.github/workflows/semgrep.yml @@ -0,0 +1,22 @@ + +# Name of this GitHub Actions workflow. +name: Semgrep +on: + pull_request: {} + workflow_dispatch: {} + push: + branches: ["master", "main"] + schedule: + - cron: '20 17 * * *' # Sets Semgrep to scan every day at 17:20 UTC. +jobs: + semgrep: + name: semgrep/ci + runs-on: ubuntu-latest + container: + image: returntocorp/semgrep + if: (github.actor != 'dependabot[bot]') + steps: + - uses: actions/checkout@v3 + - run: semgrep ci || true + env: + SEMGREP_RULES: p/default # more at semgrep.dev/explore From 546396512b0f4a8fe8e44f5334bd550546b561b6 Mon Sep 17 00:00:00 2001 From: "semgrep.dev on behalf of @ZayanShahid" Date: Tue, 23 May 2023 15:55:33 +0000 Subject: [PATCH 03/22] Add Semgrep CI --- .github/workflows/semgrep.yml | 26 ++++++++++++++------------ 1 file changed, 14 insertions(+), 12 deletions(-) diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml index a7e98a50..9f6e77ab 100644 --- a/.github/workflows/semgrep.yml +++ b/.github/workflows/semgrep.yml @@ -1,22 +1,24 @@ - -# Name of this GitHub Actions workflow. -name: Semgrep on: - pull_request: {} workflow_dispatch: {} + pull_request: {} push: - branches: ["master", "main"] + branches: + - main + - master + paths: + - .github/workflows/semgrep.yml schedule: - - cron: '20 17 * * *' # Sets Semgrep to scan every day at 17:20 UTC. + # random HH:MM to avoid a load spike on GitHub Actions at 00:00 + - cron: 52 2 * * * +name: Semgrep jobs: semgrep: name: semgrep/ci - runs-on: ubuntu-latest + runs-on: ubuntu-20.04 + env: + SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }} container: image: returntocorp/semgrep - if: (github.actor != 'dependabot[bot]') steps: - - uses: actions/checkout@v3 - - run: semgrep ci || true - env: - SEMGREP_RULES: p/default # more at semgrep.dev/explore + - uses: actions/checkout@v3 + - run: semgrep ci From aa69f859d1fb31f4e39bc38b6cece18aed16ece4 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Sat, 27 May 2023 16:53:55 +0500 Subject: [PATCH 04/22] Created YAML file --- .github/workflows/anchore.yml | 21 +++++++++++++++++++++ 1 file changed, 21 insertions(+) create mode 100644 .github/workflows/anchore.yml diff --git a/.github/workflows/anchore.yml b/.github/workflows/anchore.yml new file mode 100644 index 00000000..48ede420 --- /dev/null +++ b/.github/workflows/anchore.yml @@ -0,0 +1,21 @@ + +name: SBOM +on: [push] +jobs: + anchore_job: + runs-on: ubuntu-latest + name: Anchore scan directory + steps: + - name: Checkout + uses: actions/checkout@v2 + - name: Scan current project + id: scan + uses: anchore/scan-action@v2 + with: + path: "./" + fail-build: true + acs-report-enable: true + - name: upload Anchore scan SARIF report + uses: github/codeql-action/upload-sarif@v1 + with: + sarif_file: ${{ steps.scan.outputs.sarif }} From 845abfd842d0ff5f1695a5191dbb4edc28e10ef1 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Mon, 29 May 2023 18:14:22 +0500 Subject: [PATCH 05/22] Created YAML file --- .github/workflows/cytex.yml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml new file mode 100644 index 00000000..e2962902 --- /dev/null +++ b/.github/workflows/cytex.yml @@ -0,0 +1,16 @@ + +name: Cytex Scan +on: + push: + branches: ["master", "main"] +jobs: + analyze: + name: Code analysis + runs-on: ubuntu-latest + steps: + - run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin + - run: python3 -m pip install semgrep + - name: Checkout + uses: actions/checkout@v2 + - run: grype dir:./ -o json + - run: semgrep --config=auto ./ --json From 4b4ba8d6a4022c5c5367d799bf6f649b0b6f7cae Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Thu, 1 Jun 2023 13:21:03 +0500 Subject: [PATCH 06/22] Delete file --- .github/workflows/cytex.yml | 16 ---------------- 1 file changed, 16 deletions(-) delete mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml deleted file mode 100644 index e2962902..00000000 --- a/.github/workflows/cytex.yml +++ /dev/null @@ -1,16 +0,0 @@ - -name: Cytex Scan -on: - push: - branches: ["master", "main"] -jobs: - analyze: - name: Code analysis - runs-on: ubuntu-latest - steps: - - run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - - run: python3 -m pip install semgrep - - name: Checkout - uses: actions/checkout@v2 - - run: grype dir:./ -o json - - run: semgrep --config=auto ./ --json From 743d2b8a0217e224a9468271866725a39b58326b Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Thu, 1 Jun 2023 13:21:05 +0500 Subject: [PATCH 07/22] Delete file --- .github/workflows/semgrep.yml | 24 ------------------------ 1 file changed, 24 deletions(-) delete mode 100644 .github/workflows/semgrep.yml diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml deleted file mode 100644 index 9f6e77ab..00000000 --- a/.github/workflows/semgrep.yml +++ /dev/null @@ -1,24 +0,0 @@ -on: - workflow_dispatch: {} - pull_request: {} - push: - branches: - - main - - master - paths: - - .github/workflows/semgrep.yml - schedule: - # random HH:MM to avoid a load spike on GitHub Actions at 00:00 - - cron: 52 2 * * * -name: Semgrep -jobs: - semgrep: - name: semgrep/ci - runs-on: ubuntu-20.04 - env: - SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }} - container: - image: returntocorp/semgrep - steps: - - uses: actions/checkout@v3 - - run: semgrep ci From 8e9e4552264db67569b5d8ab2f0815248bf629fc Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Thu, 1 Jun 2023 13:21:06 +0500 Subject: [PATCH 08/22] Delete file --- .github/workflows/codeql-analysis.yml | 70 --------------------------- 1 file changed, 70 deletions(-) delete mode 100644 .github/workflows/codeql-analysis.yml diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml deleted file mode 100644 index 0d6252cf..00000000 --- a/.github/workflows/codeql-analysis.yml +++ /dev/null @@ -1,70 +0,0 @@ -#For most projects, this workflow file will not need changing; you simply need - # to commit it to your repository. - # - # You may wish to alter this file to override the set of languages analyzed, - # or to provide custom queries or build logic. - # - # ******** NOTE ******** - # We have attempted to detect the languages in your repository. Please check - # the `language` matrix defined below to confirm you have the correct set of - # supported CodeQL languages. - # - name: "CodeQL" - - on: - push: - branches: [ main ] - pull_request: - # The branches below must be a subset of the branches above - branches: [ main ] - schedule: - - cron: '0 */12 * * *' - - jobs: - analyze: - name: Analyze - runs-on: ubuntu-latest - permissions: - actions: read - contents: read - security-events: write - - strategy: - fail-fast: false - matrix: - language: cpp,csharp,go,java,python,ruby - # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ] - # Learn more about CodeQL language support at https://git.io/codeql-language-support - - steps: - - name: Checkout repository - uses: actions/checkout@v2 - - # Initializes the CodeQL tools for scanning. - - name: Initialize CodeQL - uses: github/codeql-action/init@v1 - with: - languages: ${ matrix.language } - # If you wish to specify custom queries, you can do so here or in a config file. - # By default, queries listed here will override any specified in a config file. - # Prefix the list here with "+" to use these queries and those in the config file. - # queries: ./path/to/local/query, your-org/your-repo/queries@main - - # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). - # If this step fails, then you should remove it and run the build manually (see below) - - name: Autobuild - uses: github/codeql-action/autobuild@v1 - - # ℹī¸ Command-line programs to run using the OS shell. - # 📚 https://git.io/JvXDl - - # ✏ī¸ If the Autobuild fails above, remove it and uncomment the following three lines - # and modify them (or add more) to build your code if your project - # uses a compiled language - - #- run: | - # make bootstrap - # make release - - - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v1 \ No newline at end of file From e13ab60f69409e10c9a1b75a7803f673eb987cb7 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Thu, 1 Jun 2023 13:21:08 +0500 Subject: [PATCH 09/22] Delete file --- .github/workflows/anchore.yml | 21 --------------------- 1 file changed, 21 deletions(-) delete mode 100644 .github/workflows/anchore.yml diff --git a/.github/workflows/anchore.yml b/.github/workflows/anchore.yml deleted file mode 100644 index 48ede420..00000000 --- a/.github/workflows/anchore.yml +++ /dev/null @@ -1,21 +0,0 @@ - -name: SBOM -on: [push] -jobs: - anchore_job: - runs-on: ubuntu-latest - name: Anchore scan directory - steps: - - name: Checkout - uses: actions/checkout@v2 - - name: Scan current project - id: scan - uses: anchore/scan-action@v2 - with: - path: "./" - fail-build: true - acs-report-enable: true - - name: upload Anchore scan SARIF report - uses: github/codeql-action/upload-sarif@v1 - with: - sarif_file: ${{ steps.scan.outputs.sarif }} From a680fa0f381957fd7f8992517515858b9d82fe8b Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Thu, 1 Jun 2023 13:24:35 +0500 Subject: [PATCH 10/22] Created YAML file --- .github/workflows/cytex.yml | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) create mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml new file mode 100644 index 00000000..9ad3ef6b --- /dev/null +++ b/.github/workflows/cytex.yml @@ -0,0 +1,18 @@ + +name: Cytex Scan +on: + push: + branches: ["master", "main"] +jobs: + analyze: + name: Code analysis + runs-on: ubuntu-latest + steps: + - run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin + - run: python3 -m pip install semgrep + - run: python3 -m pip install pipreqs + - name: Checkout + uses: actions/checkout@v2 + - run: pipreqs --force --ignore .github/ ./ + - run: grype dir:./ -o json + - run: semgrep --config=auto ./ --json From f596a29ebc08e21898ca743160e55147562f7b06 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Fri, 2 Jun 2023 16:10:57 +0500 Subject: [PATCH 11/22] Delete file --- .github/workflows/cytex.yml | 18 ------------------ 1 file changed, 18 deletions(-) delete mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml deleted file mode 100644 index 9ad3ef6b..00000000 --- a/.github/workflows/cytex.yml +++ /dev/null @@ -1,18 +0,0 @@ - -name: Cytex Scan -on: - push: - branches: ["master", "main"] -jobs: - analyze: - name: Code analysis - runs-on: ubuntu-latest - steps: - - run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - - run: python3 -m pip install semgrep - - run: python3 -m pip install pipreqs - - name: Checkout - uses: actions/checkout@v2 - - run: pipreqs --force --ignore .github/ ./ - - run: grype dir:./ -o json - - run: semgrep --config=auto ./ --json From 912b0a249057f3463ff595b1f4a17d006700fd56 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Mon, 5 Jun 2023 12:34:51 +0500 Subject: [PATCH 12/22] Created YAML file --- .github/workflows/cytex.yml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml new file mode 100644 index 00000000..e2962902 --- /dev/null +++ b/.github/workflows/cytex.yml @@ -0,0 +1,16 @@ + +name: Cytex Scan +on: + push: + branches: ["master", "main"] +jobs: + analyze: + name: Code analysis + runs-on: ubuntu-latest + steps: + - run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin + - run: python3 -m pip install semgrep + - name: Checkout + uses: actions/checkout@v2 + - run: grype dir:./ -o json + - run: semgrep --config=auto ./ --json From a8a11913398fe77170e9573bc3f2d13cea45291e Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Mon, 5 Jun 2023 13:09:33 +0500 Subject: [PATCH 13/22] Delete file --- .github/workflows/cytex.yml | 16 ---------------- 1 file changed, 16 deletions(-) delete mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml deleted file mode 100644 index e2962902..00000000 --- a/.github/workflows/cytex.yml +++ /dev/null @@ -1,16 +0,0 @@ - -name: Cytex Scan -on: - push: - branches: ["master", "main"] -jobs: - analyze: - name: Code analysis - runs-on: ubuntu-latest - steps: - - run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - - run: python3 -m pip install semgrep - - name: Checkout - uses: actions/checkout@v2 - - run: grype dir:./ -o json - - run: semgrep --config=auto ./ --json From d661e7c95177032551262bb09fe3bc1c11f6dab3 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Mon, 5 Jun 2023 15:04:02 +0500 Subject: [PATCH 14/22] Created YAML file --- .github/workflows/cytex.yml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml new file mode 100644 index 00000000..e2962902 --- /dev/null +++ b/.github/workflows/cytex.yml @@ -0,0 +1,16 @@ + +name: Cytex Scan +on: + push: + branches: ["master", "main"] +jobs: + analyze: + name: Code analysis + runs-on: ubuntu-latest + steps: + - run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin + - run: python3 -m pip install semgrep + - name: Checkout + uses: actions/checkout@v2 + - run: grype dir:./ -o json + - run: semgrep --config=auto ./ --json From b9bb4dd54b0462600d8467aa0ba6b25f921e423d Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Sat, 6 Apr 2024 01:30:32 +0500 Subject: [PATCH 15/22] Created YAML file --- .github/workfLs/cytex.yml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 .github/workfLs/cytex.yml diff --git a/.github/workfLs/cytex.yml b/.github/workfLs/cytex.yml new file mode 100644 index 00000000..e2962902 --- /dev/null +++ b/.github/workfLs/cytex.yml @@ -0,0 +1,16 @@ + +name: Cytex Scan +on: + push: + branches: ["master", "main"] +jobs: + analyze: + name: Code analysis + runs-on: ubuntu-latest + steps: + - run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin + - run: python3 -m pip install semgrep + - name: Checkout + uses: actions/checkout@v2 + - run: grype dir:./ -o json + - run: semgrep --config=auto ./ --json From 379667ea25c36093b8a659c02c01cadcfc5f1468 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Sat, 23 Nov 2024 04:49:07 +0500 Subject: [PATCH 16/22] Deleted YAML file --- .github/workflows/cytex.yml | 16 ---------------- 1 file changed, 16 deletions(-) delete mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml deleted file mode 100644 index e2962902..00000000 --- a/.github/workflows/cytex.yml +++ /dev/null @@ -1,16 +0,0 @@ - -name: Cytex Scan -on: - push: - branches: ["master", "main"] -jobs: - analyze: - name: Code analysis - runs-on: ubuntu-latest - steps: - - run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - - run: python3 -m pip install semgrep - - name: Checkout - uses: actions/checkout@v2 - - run: grype dir:./ -o json - - run: semgrep --config=auto ./ --json From 0c37ec1a663997bebe7178e421dedeb3f362466e Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Sat, 23 Nov 2024 04:51:34 +0500 Subject: [PATCH 17/22] Deleted YAML file --- .github/workfLs/cytex.yml | 16 ---------------- 1 file changed, 16 deletions(-) delete mode 100644 .github/workfLs/cytex.yml diff --git a/.github/workfLs/cytex.yml b/.github/workfLs/cytex.yml deleted file mode 100644 index e2962902..00000000 --- a/.github/workfLs/cytex.yml +++ /dev/null @@ -1,16 +0,0 @@ - -name: Cytex Scan -on: - push: - branches: ["master", "main"] -jobs: - analyze: - name: Code analysis - runs-on: ubuntu-latest - steps: - - run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - - run: python3 -m pip install semgrep - - name: Checkout - uses: actions/checkout@v2 - - run: grype dir:./ -o json - - run: semgrep --config=auto ./ --json From 6d2a290df038d8a816b3fbc17731237f29fd9bf9 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Sat, 23 Nov 2024 05:19:14 +0500 Subject: [PATCH 18/22] Created YAML file --- .github/workflows/cytex.yml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml new file mode 100644 index 00000000..a421b153 --- /dev/null +++ b/.github/workflows/cytex.yml @@ -0,0 +1,22 @@ + +name: Cytex Scan +on: + push: + branches: + - "master" + - "main" +jobs: + analyze: + name: Code analysis + runs-on: ubuntu-latest + steps: + - name: Install Grype + run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin + - name: Install Semgrep + run: python3 -m pip install semgrep + - name: Checkout repository + uses: actions/checkout@v2 + - name: Run Grype + run: grype dir:./ -o json + - name: Run Semgrep + run: semgrep --config=auto ./ --json From 83de0db5406db06cbe84b78ee861c6bbd9b5c4b4 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Sat, 23 Nov 2024 05:22:40 +0500 Subject: [PATCH 19/22] Deleted YAML file --- .github/workflows/cytex.yml | 22 ---------------------- 1 file changed, 22 deletions(-) delete mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml deleted file mode 100644 index a421b153..00000000 --- a/.github/workflows/cytex.yml +++ /dev/null @@ -1,22 +0,0 @@ - -name: Cytex Scan -on: - push: - branches: - - "master" - - "main" -jobs: - analyze: - name: Code analysis - runs-on: ubuntu-latest - steps: - - name: Install Grype - run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - - name: Install Semgrep - run: python3 -m pip install semgrep - - name: Checkout repository - uses: actions/checkout@v2 - - name: Run Grype - run: grype dir:./ -o json - - name: Run Semgrep - run: semgrep --config=auto ./ --json From 507693f1b1bfe5c10c50da606bfa41edb87c4da1 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Sat, 23 Nov 2024 05:30:55 +0500 Subject: [PATCH 20/22] Created YAML file --- .github/workflows/cytex.yml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml new file mode 100644 index 00000000..a421b153 --- /dev/null +++ b/.github/workflows/cytex.yml @@ -0,0 +1,22 @@ + +name: Cytex Scan +on: + push: + branches: + - "master" + - "main" +jobs: + analyze: + name: Code analysis + runs-on: ubuntu-latest + steps: + - name: Install Grype + run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin + - name: Install Semgrep + run: python3 -m pip install semgrep + - name: Checkout repository + uses: actions/checkout@v2 + - name: Run Grype + run: grype dir:./ -o json + - name: Run Semgrep + run: semgrep --config=auto ./ --json From 971a2aa21ed4fe3c912a2c65ef6de45e11eba0f6 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Sat, 23 Nov 2024 05:48:14 +0500 Subject: [PATCH 21/22] Deleted YAML file --- .github/workflows/cytex.yml | 22 ---------------------- 1 file changed, 22 deletions(-) delete mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml deleted file mode 100644 index a421b153..00000000 --- a/.github/workflows/cytex.yml +++ /dev/null @@ -1,22 +0,0 @@ - -name: Cytex Scan -on: - push: - branches: - - "master" - - "main" -jobs: - analyze: - name: Code analysis - runs-on: ubuntu-latest - steps: - - name: Install Grype - run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - - name: Install Semgrep - run: python3 -m pip install semgrep - - name: Checkout repository - uses: actions/checkout@v2 - - name: Run Grype - run: grype dir:./ -o json - - name: Run Semgrep - run: semgrep --config=auto ./ --json From 6ad6718562bd2579faa4a916a6fd5b56439dcab4 Mon Sep 17 00:00:00 2001 From: Muhammad Shahid <61520009+ZayanShahid@users.noreply.github.com> Date: Sat, 23 Nov 2024 05:49:20 +0500 Subject: [PATCH 22/22] Created YAML file --- .github/workflows/cytex.yml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 .github/workflows/cytex.yml diff --git a/.github/workflows/cytex.yml b/.github/workflows/cytex.yml new file mode 100644 index 00000000..a421b153 --- /dev/null +++ b/.github/workflows/cytex.yml @@ -0,0 +1,22 @@ + +name: Cytex Scan +on: + push: + branches: + - "master" + - "main" +jobs: + analyze: + name: Code analysis + runs-on: ubuntu-latest + steps: + - name: Install Grype + run: curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin + - name: Install Semgrep + run: python3 -m pip install semgrep + - name: Checkout repository + uses: actions/checkout@v2 + - name: Run Grype + run: grype dir:./ -o json + - name: Run Semgrep + run: semgrep --config=auto ./ --json