-
Notifications
You must be signed in to change notification settings - Fork 6
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #160 from Checkmarx/feature/kobih/fix-vulnerabilities
Fix vulnerabilities and tests, upgrade packages and CLI version (AST-38513)
- Loading branch information
Showing
13 changed files
with
32 additions
and
29 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -14,10 +14,10 @@ jobs: | |
uses: actions/checkout@v4 | ||
|
||
- name: Setup VSTest | ||
uses: darenm/Setup-VSTest@v1 | ||
uses: darenm/Setup-VSTest@fbb574e849d6225ce9702f86e64eb6cdc4b4e561 #v1 | ||
|
||
- name: Add MSBuild to PATH | ||
uses: microsoft/[email protected] | ||
uses: microsoft/setup-msbuild@1ff57057b5cfdc39105cd07a01d78e9b0ea0c14c #v1.3.1 | ||
with: | ||
vs-version: '17.2' | ||
|
||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -11,7 +11,7 @@ jobs: | |
steps: | ||
- name: Dependabot metadata | ||
id: metadata | ||
uses: dependabot/[email protected] | ||
uses: dependabot/fetch-metadata@c9c4182bf1b97f5224aee3906fd373f6b61b4526 #v1.6.0 | ||
with: | ||
github-token: "${{ secrets.PERSONAL_ACCESS_TOKEN }}" | ||
- name: Enable auto-merge for Dependabot PRs | ||
|
@@ -20,6 +20,6 @@ jobs: | |
GITHUB_TOKEN: ${{secrets.PERSONAL_ACCESS_TOKEN }} | ||
run: gh pr merge --auto --merge "$PR_URL" | ||
- name: Auto approve dependabot PRs | ||
uses: hmarr/auto-approve-action@v3 | ||
uses: hmarr/auto-approve-action@a2e6f2a0ccf5c63ef8754de360464edbf47e66ee #v3 | ||
with: | ||
github-token: ${{ secrets.PERSONAL_ACCESS_TOKEN }} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -29,7 +29,7 @@ jobs: | |
if: ${{needs.check-dependabot-commits.outputs.isDependabot == 'false'}} | ||
steps: | ||
- name: Delete release | ||
uses: dev-drprasad/[email protected] | ||
uses: dev-drprasad/delete-tag-and-release@8cd619d00037e4aeb781909c9a6b03940507d0da #v1.0.1 | ||
env: | ||
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | ||
with: | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -42,7 +42,7 @@ jobs: | |
token: ${{ secrets.PERSONAL_ACCESS_TOKEN }} | ||
|
||
- name: Add MSBuild to PATH | ||
uses: microsoft/[email protected] | ||
uses: microsoft/setup-msbuild@1ff57057b5cfdc39105cd07a01d78e9b0ea0c14c #v1.3.1 | ||
with: | ||
vs-version: '17.2' | ||
|
||
|
@@ -71,7 +71,7 @@ jobs: | |
- name: Increment VSIX version | ||
id: vsix_version | ||
uses: timheuer/vsix-version-stamp@v2 | ||
uses: timheuer/vsix-version-stamp@9d38292e99e54046455bb68c6a2b5113d269a7d0 #v2 | ||
with: | ||
manifest-file: ast-visual-studio-extension\source.extension.vsixmanifest | ||
|
||
|
@@ -82,15 +82,15 @@ jobs: | |
run: msbuild .\ast-visual-studio-extension\ast-visual-studio-extension.csproj /p:Configuration=Release /p:DeployExtension=False | ||
|
||
- name: Create Release | ||
uses: softprops/[email protected] | ||
uses: softprops/action-gh-release@de2c0eb89ae2a093876385947365aca7b0e5f844 #v0.1.15 | ||
with: | ||
tag_name: ${{ inputs.tag }} | ||
prerelease: ${{ inputs.dev }} | ||
generate_release_notes: true | ||
files: '.\ast-visual-studio-extension\bin\Release\ast-visual-studio-extension.vsix' | ||
|
||
- name: Publish Release | ||
uses: cezarypiatek/[email protected] | ||
uses: cezarypiatek/VsixPublisherAction@9c6b58b5955df9901a6e9834be1d0a94cd54aeba #1.0 | ||
if: inputs.dev == false | ||
with: | ||
extension-file: '.\ast-visual-studio-extension\bin\Release\ast-visual-studio-extension.vsix' | ||
|
@@ -112,7 +112,7 @@ jobs: | |
echo "::set-output name=body_release::$body_release" | ||
- name: Converts Markdown to HTML | ||
id: convert | ||
uses: lifepal/[email protected] | ||
uses: lifepal/markdown-to-html@253bbd85fbdeafe2d1f18c1b9289be24e5cf8f8f #v1.2 | ||
with: | ||
text: "${{ steps.release.outputs.body_release }}" | ||
|
||
|
@@ -124,7 +124,7 @@ jobs: | |
echo "::set-output name=clean::$clean" | ||
- name: Send a Notification | ||
id: notify | ||
uses: thechetantalwar/teams-notify@v2 | ||
uses: thechetantalwar/teams-notify@8a78811f5e8f58cdd204efebd79158006428c46b #v2 | ||
with: | ||
teams_webhook_url: ${{ secrets.TEAMS_WEBHOOK_URI }} | ||
message: "<h1>Checkmarx Visual Studio Plugin ${{ env.RELEASE_VERSION }}</h1>${{ steps.clean.outputs.clean }}" | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Binary file not shown.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters