component-detection-dependency-submission-action

actions/component-detection-dependency-submission-action

Fork 0

374343effe Merge pull request #6 from actions/weekly-sync-branch-16171136386 main Lewis Jones 2025-07-09 14:49:18 +01:00
5a79ab0fa4 Empty commit to open PR github-actions[bot] 2025-07-09 13:48:25 +00:00
0c3e582042 Merge upstream:main github-actions[bot] 2025-07-09 13:48:25 +00:00
d433c2f467 Merge pull request #126 from advanced-security/ljones140/prep-0.1.0-release Lewis Jones 2025-07-09 14:46:20 +01:00
96c59aebfe Bump minor version Lewis Jones 2025-07-09 14:42:42 +01:00
6dd7b2dc55 Merge pull request #125 from advanced-security/ljones140/remove-manifest-leading-slash Lewis Jones 2025-07-09 14:40:04 +01:00
496691092b remove environment.yml Lewis Jones 2025-07-09 13:49:12 +01:00
e6ad22924a Refactor: improve full scan manifest test Lewis Jones 2025-07-09 13:46:43 +01:00
0b0b651777 Refactor test. Download latest release Lewis Jones 2025-07-09 13:41:17 +01:00
914cb6dc5e Remove debug logging Lewis Jones 2025-07-09 13:35:28 +01:00
28905c6bc0 manifest test Lewis Jones 2025-07-09 13:28:41 +01:00
f89d41905d Add manifest level test Lewis Jones 2025-07-09 12:36:47 +01:00
4e2fbd91ff Transpiled JS Lewis Jones 2025-07-09 12:16:42 +01:00
6d25ae13f5 Remove leading slashes from top manifests Lewis Jones 2025-07-09 12:16:21 +01:00
7d147e8b5f Add nested dirs to test Lewis Jones 2025-07-09 11:56:34 +01:00
5789c204e4 update test Lewis Jones 2025-07-09 11:46:15 +01:00
98b7e66125 Transpiled JS Lewis Jones 2025-07-09 11:41:22 +01:00
b2779b0030 Remove leading slash from root manifests Lewis Jones 2025-07-09 11:39:47 +01:00
876b304ec0 Merge pull request #5 from actions/weekly-sync-branch-16062172741 Justin Holguín 2025-07-03 16:09:54 -07:00
3104f6d51c Empty commit to open PR github-actions[bot] 2025-07-03 23:08:17 +00:00
5d8c040f29 Merge upstream:main github-actions[bot] 2025-07-03 23:08:17 +00:00
64db6d9d15 Merge pull request #123 from advanced-security/juxtin/prep-007 Justin Holguín 2025-07-02 12:54:29 -07:00
a44e08867f Prepare for v0.0.7 release Justin Holguín 2025-07-02 19:39:44 +00:00
fc216b239a Merge pull request #121 from advanced-security/juxtin/direct-vs-transitive Justin Holguín 2025-07-02 12:32:40 -07:00
5b2736e4f4 Update dist Justin Holguín 2025-07-02 18:40:35 +00:00
bbe83e8988 Skip self-referrers Justin Holguín 2025-07-02 18:40:04 +00:00
c936885d12 Update dist Justin Holguín 2025-06-27 20:27:16 +00:00
5f4db12f7b Use explicitlyReferencedComponentIds to mark directs Justin Holguín 2025-06-27 18:53:49 +00:00
466989c808 Merge pull request #4 from actions/weekly-sync-branch-15774881579 Lewis Jones 2025-06-20 09:40:55 +01:00
67f3292117 Empty commit to open PR github-actions[bot] 2025-06-20 08:36:52 +00:00
3f420ae88d Merge upstream:main github-actions[bot] 2025-06-20 08:36:52 +00:00
b242ddf67a Merge pull request #120 from advanced-security/ljones140/fix-direct-when-self-referring Lewis Jones 2025-06-20 09:26:51 +01:00
3349f8c032 Generated dist Lewis Jones 2025-06-19 15:22:04 +01:00
2517c7a607 Add types Lewis Jones 2025-06-19 15:21:52 +01:00
2efc7af7df Refactor: Extract another method and test with real data Lewis Jones 2025-06-19 15:13:55 +01:00
6d56d2b42c Don't make self refential referrer as indirect Lewis Jones 2025-06-19 12:55:00 +01:00
0de0af1352 Remove unnesessary test package incrementation Lewis Jones 2025-06-19 12:35:41 +01:00
4daccf7142 Ensure tests are testing properly Lewis Jones 2025-06-19 12:33:31 +01:00
caa69e181f Extract addPackagesToManifests to unit test Lewis Jones 2025-06-19 12:14:02 +01:00
ef571d5a84 Merge pull request #3 from actions/weekly-sync-branch-15680274825 Lewis Jones 2025-06-16 13:05:03 +01:00
0eb73668fa Empty commit to open PR github-actions[bot] 2025-06-16 12:04:03 +00:00
7a168cbdc4 Merge upstream:main github-actions[bot] 2025-06-16 12:04:03 +00:00
04aaaf6193 Merge pull request #118 from advanced-security/ljones140/add-snapshot-inputs Lewis Jones 2025-06-16 13:03:18 +01:00
0f3b6aecc6 Generate dist Lewis Jones 2025-06-16 11:17:06 +01:00
348257c874 Add sha and ref snapshot inputs Lewis Jones 2025-06-16 11:15:10 +01:00
779e8387fd Add detector inputs Lewis Jones 2025-06-16 11:03:28 +01:00
d5fd67e101 Merge pull request #2 from actions/weekly-sync-branch-15612676798 Lewis Jones 2025-06-12 15:02:36 +01:00
27e6d82755 Empty commit to open PR github-actions[bot] 2025-06-12 14:01:47 +00:00
3d11e5a0f7 Merge upstream:main github-actions[bot] 2025-06-12 14:01:47 +00:00
e0dcc85667 Merge pull request #117 from actions/ljones140/clean-detector-categories-pr Lewis Jones 2025-06-12 13:26:39 +01:00
4f5a06217d Remove examples Lewis Jones 2025-06-12 12:23:38 +01:00
81fde650c2 Add new input to readme Lewis Jones 2025-06-12 11:56:06 +01:00
786fb5fe93 dist generated code Lewis Jones 2025-06-12 11:46:21 +01:00
550b6f27ed Pass detectorCategories Lewis Jones 2025-06-12 11:46:07 +01:00
51ef6b3995 Merge pull request #1 from actions/ljones140/setup-fork Lewis Jones 2025-06-10 15:35:24 +01:00
cfe815dd6d Add fork sync mechanism Lewis Jones 2025-06-10 14:51:08 +01:00
9db31129a3 update codeowners Lewis Jones 2025-06-10 14:50:54 +01:00
07208f2876 Merge pull request #116 from advanced-security/dist_update Mathew Payne 2025-05-27 13:27:12 +01:00
67d05b822a Update binary files for index.js and index.js.map Adrien Pessu 2025-05-27 11:17:44 +00:00
2aa140be93 Merge pull request #113 from advanced-security/dependabot/npm_and_yarn/npm_and_yarn-87115a91ec Adrien Pessu 2025-05-27 12:55:59 +02:00
e4fe0062c4 Bump undici from 5.28.5 to 5.29.0 in the npm_and_yarn group dependabot[bot] 2025-05-15 16:35:16 +00:00
1874d0f72d Merge pull request #109 from advanced-security/feature/handle-null-purls Chad Bentz 2025-05-14 14:14:21 -04:00
4a59086e33 Merge branch 'main' into feature/handle-null-purls Chad Bentz 2025-05-13 14:27:43 -04:00
3805c51da5 Merge pull request #105 from advanced-security/dependabot/github_actions/actions-dependencies-37cd5763f6 Mathew Payne 2025-05-13 09:18:05 +01:00
1a821e1ee2 Merge branch 'main' into dependabot/github_actions/actions-dependencies-37cd5763f6 Mathew Payne 2025-05-13 09:12:58 +01:00
67962323ba Merge pull request #112 from advanced-security/alert-autofix-workflow-permissions Mathew Payne 2025-05-13 09:12:03 +01:00
73e1388139 Validate packageUrlJson structure in makePackageUrl method Chad Bentz 2025-05-12 22:25:29 +00:00
47ec470b21 Refactor tests Chad Bentz 2025-05-12 22:05:43 +00:00
203f6e5c2e Update componentDetection.test.ts Chad Bentz 2025-05-12 17:39:26 -04:00
3f82ca7921 Update componentDetection.test.ts Chad Bentz 2025-05-12 17:39:18 -04:00
fcd2c805ee Update componentDetection.test.ts Chad Bentz 2025-05-12 17:35:43 -04:00
7cfdb92164 Potential fix for code scanning alert no. 11: Workflow does not contain permissions Chad Bentz 2025-05-12 17:30:29 -04:00
7eebd4d574 Potential fix for code scanning alert no. 12: Workflow does not contain permissions Chad Bentz 2025-05-12 17:29:23 -04:00
b69d2d201b Add tests Chad Bentz 2025-05-12 21:08:26 +00:00
5840bc427c Update index.js.map with new build output Chad Bentz 2025-05-12 20:05:44 +00:00
0b3ad66ec5 Merge remote-tracking branch 'origin/main' into feature/handle-null-purls Chad Bentz 2025-05-12 20:03:12 +00:00
6a1035d837 Merge pull request #111 from advanced-security/dependabot/npm_and_yarn/npm-dependencies-e202d7757e Chad Bentz 2025-05-12 15:49:21 -04:00
2c2e919e21 Fix eslint ... v9 upgrade broke! Chad Bentz 2025-05-12 17:14:48 +00:00
31789e4b4b Enable full ESM support for Node 20+ and modern dependencies, update Jest and build output configuration Chad Bentz 2025-05-12 17:09:08 +00:00
9d2bd043b0 Bump the npm-dependencies group across 1 directory with 9 updates dependabot[bot] 2025-05-12 13:14:27 +00:00
977f836c74 Compile change Chad Bentz 2025-05-09 05:39:06 +00:00
ce6986e485 comments Chad Bentz 2025-05-09 05:34:00 +00:00
6cf906749f Improve package URL validation and skip components with invalid URLs Chad Bentz 2025-05-09 05:25:36 +00:00
5cef7e77dc Add debug logging for missing packageUrl and improve package URL handling Chad Bentz 2025-05-09 05:15:48 +00:00
66493a2f02 Bump actions/setup-node in the actions-dependencies group dependabot[bot] 2025-04-14 13:05:25 +00:00
7f8a022063 Installed packages for node20 aegilops 2025-04-07 17:14:09 +01:00
98544e57ff Bumped to node20 aegilops 2025-04-07 17:11:32 +01:00
0392894454 Merge pull request #103 from advanced-security/dependabot/npm_and_yarn/test/npm_and_yarn-b4b4d8a9d0 Paul Hodgkinson 2025-04-07 17:09:27 +01:00
fb5132e101 Bump the npm_and_yarn group across 1 directory with 5 updates dependabot[bot] 2025-04-07 16:09:14 +00:00
0e8665d741 Merge pull request #92 from advanced-security/dependabot/npm_and_yarn/test/npm_and_yarn-c15c2592f9 Paul Hodgkinson 2025-04-07 17:07:22 +01:00
b3c6d48d63 Merge pull request #93 from advanced-security/dependabot/npm_and_yarn/npm_and_yarn-c15c2592f9 Paul Hodgkinson 2025-04-07 17:06:43 +01:00
d5ba02889a Merge pull request #95 from advanced-security/dependabot/github_actions/actions-dependencies-c2de478214 Paul Hodgkinson 2025-04-07 17:04:19 +01:00
c8c9e921a9 Merge pull request #98 from advanced-security/dependabot/npm_and_yarn/npm-dependencies-1b2666c53e Paul Hodgkinson 2025-04-07 17:03:56 +01:00
4c4b8a2d01 Merge pull request #102 from gitulisca-enterprise-cloud-testing/gitulisca/add-correlator-action-input Mathew Payne 2025-04-07 14:55:41 +01:00
9abe52af77 Increase test 'Runs CLI' jestjs timeout gitulisca 2025-04-07 10:39:02 +00:00
36f75d5c4d Merge branch 'advanced-security:main' into gitulisca/add-correlator-action-input gitulisca 2025-04-07 12:05:27 +10:00
5429d60d7d Merge pull request #101 from advanced-security/remove-the-workflow-not-the-conf Barry Gordon 2025-04-04 13:26:31 +01:00
024fc8bf58 Remove the workflow not the config Barry Gordon 2025-04-04 11:23:32 +00:00
f30e591ac3 Merge pull request #100 from advanced-security/brrygrdn/remove-codeql-config Barry Gordon 2025-04-04 11:38:44 +01:00
c71cfb58d3 Remove CodeQL config since we use Default Setup Barry Gordon 2025-04-04 10:11:35 +00:00

Commit Graph Select branches Hide Pull Requests main Mono Color

Commit Graph

Select branches

Hide Pull Requests

main