From 6cfc8f79f8af74ce490a9eaa78ac47c8c45d94b0 Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Fri, 17 May 2024 20:27:56 +0530 Subject: [PATCH 1/5] sca-scan.yml From ca2834a0f3c7286de2376f55fbb4b37d9a849987 Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Fri, 17 May 2024 20:28:12 +0530 Subject: [PATCH 2/5] jira.yml From cef7667a1702345dc14b749ee468773064296575 Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Fri, 17 May 2024 20:28:12 +0530 Subject: [PATCH 3/5] sast-scan.yml From 012f852871a5c7b425b9755ab6498c2bf47814c1 Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Fri, 17 May 2024 20:28:13 +0530 Subject: [PATCH 4/5] Delete secrets-scan.yml --- .github/workflows/secrets-scan.yml | 54 ------------------------------ 1 file changed, 54 deletions(-) delete mode 100644 .github/workflows/secrets-scan.yml diff --git a/.github/workflows/secrets-scan.yml b/.github/workflows/secrets-scan.yml deleted file mode 100644 index c0d8140ce5..0000000000 --- a/.github/workflows/secrets-scan.yml +++ /dev/null @@ -1,54 +0,0 @@ -name: Secrets Scan -on: - pull_request: - types: [opened, synchronize, reopened] -jobs: - security-secrets: - runs-on: ubuntu-latest - steps: - - uses: actions/checkout@v2 - with: - fetch-depth: 0 - - - name: Install Expect, jq and Python - run: sudo apt-get update --fix-missing && sudo apt-get install -y expect jq python3 python3-pip wkhtmltopdf - - - name: Install Python packages - run: pip install pandas json2html tabulate - - - name: Install Talisman - run: | - curl --silent https://raw.githubusercontent.com/thoughtworks/talisman/v1.32.0/install.sh > install.bash - chmod +x install.bash - ./install.bash - - - name: Run Talisman - id: run_talisman - run: /usr/local/bin/talisman --scan - continue-on-error: true - - - name: Convert JSON to HTML - run: | - python3 -c " - import json - import os - from json2html import * - with open('talisman_report/talisman_reports/data/report.json') as f: - data = json.load(f) - html = json2html.convert(json = data) - os.makedirs('talisman_html_report', exist_ok=True) - with open('talisman_html_report/report.html', 'w') as f: - f.write(html) - " && wkhtmltopdf talisman_html_report/report.html talisman_report.pdf - - - name: Upload Report - id: upload_report - uses: actions/upload-artifact@v4 - with: - name: talisman-report-pdf - path: talisman_report.pdf - - - name: Check the status of talisman scan - run: | - # if [[ ${{ steps.run_talisman.outcome }} == "success" ]]; then exit 0; else echo "Download the Talisman scan report from Artifact: ${{ steps.upload_report.outputs.artifact-url }}" && exit 1; fi - echo "Download the Talisman scan report from Artifact: ${{ steps.upload_report.outputs.artifact-url }}"; \ No newline at end of file From a57a6bb5643629b2f4f8a9fe4fe282eba3f167de Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Fri, 17 May 2024 20:28:15 +0530 Subject: [PATCH 5/5] codeql-analysis.yml