From 808db56fb2e3b7d1b3c4b124476c64621b793536 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 19 Feb 2024 15:29:31 +0000 Subject: [PATCH 1/4] Bump super-linter/super-linter from 5 to 6 Bumps [super-linter/super-linter](https://github.com/super-linter/super-linter) from 5 to 6. - [Release notes](https://github.com/super-linter/super-linter/releases) - [Changelog](https://github.com/super-linter/super-linter/blob/main/CHANGELOG.md) - [Commits](https://github.com/super-linter/super-linter/compare/v5...v6) --- updated-dependencies: - dependency-name: super-linter/super-linter dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/linter.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml index 1e36684..956bc8e 100644 --- a/.github/workflows/linter.yml +++ b/.github/workflows/linter.yml @@ -34,7 +34,7 @@ jobs: - name: Lint Codebase id: super-linter - uses: super-linter/super-linter/slim@v5 + uses: super-linter/super-linter/slim@v6 env: DEFAULT_BRANCH: main FILTER_REGEX_EXCLUDE: dist/**/* From 81fd0bf3b3555076057edd0a9307430da81f78d0 Mon Sep 17 00:00:00 2001 From: Nick Alteen Date: Thu, 22 Feb 2024 09:14:11 -0500 Subject: [PATCH 2/4] Update fetch depth --- .github/workflows/linter.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml index 956bc8e..82689c0 100644 --- a/.github/workflows/linter.yml +++ b/.github/workflows/linter.yml @@ -20,6 +20,8 @@ jobs: - name: Checkout id: checkout uses: actions/checkout@v4 + with: + fetch-depth: 0 - name: Setup Node.js id: setup-node From beaf553f35b74d21c9cabcf2b1f81c01ee5a05e8 Mon Sep 17 00:00:00 2001 From: Nick Alteen Date: Thu, 22 Feb 2024 09:16:56 -0500 Subject: [PATCH 3/4] Fix linting error --- .github/workflows/codeql-analysis.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index e2edaea..7856e8e 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -21,16 +21,16 @@ on: schedule: - cron: '19 4 * * 3' +permissions: + actions: read + contents: read + security-events: write + jobs: analyze: name: Analyze runs-on: ubuntu-latest - permissions: - actions: read - contents: read - security-events: write - strategy: fail-fast: false matrix: From 23bf5e86e608e22101d2a6d0291100220456e4fa Mon Sep 17 00:00:00 2001 From: Nick Alteen Date: Thu, 22 Feb 2024 09:20:51 -0500 Subject: [PATCH 4/4] Fix linting errors --- .github/linters/.checkov.yml | 3 +++ .github/workflows/example-workflow.yml | 4 ++++ 2 files changed, 7 insertions(+) create mode 100644 .github/linters/.checkov.yml diff --git a/.github/linters/.checkov.yml b/.github/linters/.checkov.yml new file mode 100644 index 0000000..2645248 --- /dev/null +++ b/.github/linters/.checkov.yml @@ -0,0 +1,3 @@ +quiet: true +skip-check: + - CKV_GHA_7 diff --git a/.github/workflows/example-workflow.yml b/.github/workflows/example-workflow.yml index b14ebb8..8853bc8 100644 --- a/.github/workflows/example-workflow.yml +++ b/.github/workflows/example-workflow.yml @@ -9,6 +9,10 @@ on: default: 'World' type: string +permissions: + actions: read + contents: read + jobs: say-hello: name: Say Hello