actions/dependency-review-action
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
NaN Commits 1 Branch 0 Tags
2e4eaa490e6a0bce7c4272c578e7ecb462b8d498
Commit Graph

306 Commits

Author SHA1 Message Date
Eli Reisman
2e4eaa490e complete test suite conversions; simplify fn name 2024-06-10 09:51:00 -07:00
Eli Reisman
ecd706f525 register spdx lib as ES Module, start converting call sites to use new spdx pkg - TODO: update tests 2024-06-10 09:51:00 -07:00
Eli Reisman
e69288dbec only filter out removed changes from the original PR diff when adding scorecard entries in DR Action report 2024-06-07 10:00:37 -07:00
Eli Reisman
220872c81a Update src/main.ts 
Co-authored-by: Brandon Teng <bteng22@github.com>
 2024-06-04 12:14:40 -07:00
Eli Reisman
4531204be7 whitespace 2024-06-04 11:50:21 -07:00
Eli Reisman
df1ca890c5 appease linter 2024-06-04 11:50:21 -07:00
Eli Reisman
97c6dd59c3 run prettier to clear linter warnings 2024-06-04 11:50:21 -07:00
Eli Reisman
0bec1ca5b4 clean up list formatting for PR comment 2024-06-04 11:21:15 -07:00
Eli Reisman
5460632ba9 WIP: summary test 2024-06-04 11:21:15 -07:00
Eli Reisman
f7aca4f481 refactor to dedup min summary generation 2024-06-04 11:21:14 -07:00
Eli Reisman
1988567896 re-apply set output for comment-content 2024-06-04 11:20:29 -07:00
Justin Hutchings
1e26117d02 Fix extra whitespace in list 2024-06-04 11:20:27 -07:00
Justin Hutchings
b1e704b9d6 Fix bug where I replaced the comment in the wrong spot 2024-06-04 11:20:19 -07:00
Justin Hutchings
48fae2e703 Add min-comment to fix max-comment length issue 2024-06-04 11:20:10 -07:00
Josie Anugerah
d11eeb39d8 Merge branch 'main' into deps-dev-v3 2024-05-06 17:26:48 +10:00
Justin Holguín
432d8e7efe Allow slashes in purl package names 2024-05-02 19:11:08 +00:00
Justin Holguín
49fbbe0acb Fix package-url parsing for allow-dependencies-licenses 2024-04-29 23:24:15 +00:00
Justin Holguín
5f0808ffb1 Validate that deny-packages purls are complete 2024-04-29 16:46:21 +00:00
Justin Holguín
fcc66c23b3 Refine purl parsing and tests 2024-04-28 20:33:37 +00:00
Justin Holguín
1dd418bcb3 Basic tests for PURL validation in config 2024-04-27 22:16:46 +00:00
Justin Holguín
640617990f Replace packageurl-js with our own implementation 2024-04-27 21:26:06 +00:00
Justin Holguín
2034babb6b Bypass purls (mostly) for deny checks 2024-04-26 23:17:11 +00:00
Justin Holguín
7e773b1e98 Log offending purl 2024-04-26 21:50:12 +00:00
Justin Holguín
a3460920cc Parse purls cautiously in getDeniedChanges 2024-04-26 21:28:24 +00:00
Josie Anugerah
2a28e93881 Merge branch 'main' into deps-dev-v3 2024-04-26 14:10:34 +10:00
Brandon Teng
ce31ee8325 Merge branch 'main' into deny-list-version 2024-04-24 18:16:35 -05:00
Justin Holguín
7e2c3c347b Show denied packages with red X 2024-04-24 22:11:24 +00:00
Brandon Teng
80116a4564 Merge branch 'main' into deny-list-version 2024-04-24 16:35:05 -05:00
Justin Hutchings
6d3fba9bf2 Remove extra https:// 2024-04-23 17:26:55 +00:00
Brandon Teng
c32a0148b3 throwing parsing error up instead of swallowing it 2024-04-16 16:25:28 -05:00
Brandon Teng
3ca15314ff transforming package URLs during zod parsing 2024-04-16 16:04:11 -05:00
Brandon Teng
a318e62c6c using packageurl-js to parse packages and groups from config 2024-04-16 12:44:51 -05:00
Josie Anugerah
b0986c2fe0 use the v3 version of the deps.dev API 2024-04-09 16:11:32 +10:00
Brandon Teng
a323510dae more refactoring for getDeniedChanges 2024-04-04 15:18:51 -05:00
Brandon Teng
7cebd9d64d refactoring getDeniedChanges 2024-04-04 15:04:45 -05:00
Brandon Teng
411e5ec44f updating deny-packages config option to deny exact version or wildcard 2024-04-04 13:25:54 -05:00
Federico Builes
0e665bf3ac Adding a failing test. 
Co-authored-by: Brandon Teng <bteng22@github.com>
 2024-03-27 15:05:17 +01:00
Justin Hutchings
35b83b4207 Fix prettier issues 2024-03-22 21:59:08 +00:00
Justin Hutchings
2b0aaf1638 Fix extra slash issue 2024-03-22 21:20:15 +00:00
Justin Hutchings
d9209374af Fix repositoryUrl issues around GitHub Actions 2024-03-22 21:00:38 +00:00
laughedelic
16bfb3360c Merge branch 'main' into feat/data-outputs 2024-03-15 03:21:07 +01:00
Justin Hutchings
4ce120135b Fix OpenSSF Scorecard display issue 2024-03-13 16:23:23 +00:00
Justin Hutchings
0e8bc32a54 Fix prettier linting 2024-03-12 22:06:54 +00:00
Justin Hutchings
f875e6ec1d Simplify truthiness check 2024-03-12 21:49:01 +00:00
Justin Hutchings
72666694f0 Fix broken tests, clean up dead code 2024-03-12 21:32:27 +00:00
Justin Hutchings
7dc5f537be Add scorecard to summary and count scorecard warnings 2024-03-12 20:47:25 +00:00
Justin Hutchings
ac600387ca Add tests 2024-03-12 17:55:10 +00:00
Justin Hutchings
d186d663df Automatically collapse the scorecard table 2024-03-11 22:23:03 +00:00
Justin Hutchings
b7fdb4c8e2 Remove unused import 2024-03-11 22:19:09 +00:00
Justin Hutchings
ba6b805e18 Remove dead code, complete printScorecardBlock 2024-03-11 22:17:28 +00:00