Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add CVE scan GitHub workflow that is triggered on pull requests #2977

Merged
merged 2 commits into from
Jun 28, 2024
Merged

Add CVE scan GitHub workflow that is triggered on pull requests #2977

merged 2 commits into from
Jun 28, 2024

Conversation

weresch
Copy link
Contributor

@weresch weresch commented Jun 27, 2024

Thank you for contributing to the CF CLI! Please read the following:

  • Please make sure you have implemented changes in line with the contributing guidelines
  • We're not allowed to accept any PRs without a signed CLA, no matter how small.
    If your contribution falls under a company CLA but your membership is not public, expect delays while we confirm.
  • All new code requires tests to protect against regressions.
  • Contributions must be made against the appropriate branch. See the contributing guidelines
  • Contributions must conform to our style guide. Please reach out to us if you have questions.

Note: Please create separate PR for every branch (main, v8 and v7) as needed.

Description of the Change

Adding a CVE scan GitHub workflow on PRs.

Why Is This PR Valuable?

The CVE scan GitHub workflow on PRs helps prevent known CVEs from being added to the codebase.

Applicable Issues

No applicable issues

How Urgent Is The Change?

Not urgent

Other Relevant Parties

No one else

@weresch
Copy link
Contributor Author

weresch commented Jun 27, 2024

I paired on this work with @chinigo

@a-b
Copy link
Member

a-b commented Jun 27, 2024

Considering the volume of shell scripts we're writing, should we try https://github.com/shellspec/shellspec ?

a-b
a-b approved these changes Jun 28, 2024
View reviewed changes
Copy link
Member

@a-b a-b left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@a-b a-b merged commit fa795ba into cloudfoundry:main Jun 28, 2024
12 of 15 checks passed
weresch added a commit to weresch/cli that referenced this pull request Jun 28, 2024
@weresch
Add CVE scan GitHub workflow that is triggered on pull requests (clou…
02df382 
…dfoundry#2977)

* Add a GitHub workflow to scan for CVEs
* Run on each commit, PR, and on-demand
* Remove CVE scan workflow trigger on commits
weresch added a commit to weresch/cli that referenced this pull request Jun 28, 2024
@weresch
Add CVE scan GitHub workflow that is triggered on pull requests (clou…
740f68d 
…dfoundry#2977)

* Add a GitHub workflow to scan for CVEs
* Run on each commit, PR, and on-demand
* Remove CVE scan workflow trigger on commits
This was referenced Jun 28, 2024
Merged
Merged
a-b pushed a commit that referenced this pull request Jul 1, 2024
@weresch
Add CVE scan GitHub workflow that is triggered on pull requests (#2977)…
de5b5ee 
… (#2978)

* Add a GitHub workflow to scan for CVEs
* Run on each commit, PR, and on-demand
* Remove CVE scan workflow trigger on commits
a-b pushed a commit that referenced this pull request Jul 1, 2024
@weresch
Add CVE scan GitHub workflow that is triggered on pull requests (#2977)…
d3b8cbb 
… (#2979)

* Add a GitHub workflow to scan for CVEs
* Run on each commit, PR, and on-demand
* Remove CVE scan workflow trigger on commits
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@a-b a-b a-b approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@weresch @a-b