Commit Graph

48 Commits

Author SHA1 Message Date
Justin Hutchings
72666694f0 Fix broken tests, clean up dead code 2024-03-12 21:32:27 +00:00
Justin Hutchings
7dc5f537be Add scorecard to summary and count scorecard warnings 2024-03-12 20:47:25 +00:00
Justin Hutchings
d186d663df Automatically collapse the scorecard table 2024-03-11 22:23:03 +00:00
Justin Hutchings
250250e73d Refactor schema, add line numbers to warnings 2024-03-08 02:31:11 +00:00
Justin Hutchings
59d4782b76 Add links to summary 2024-03-06 20:14:19 +00:00
Justin Hutchings
111227a118 Refactor scorecard API implementation 2024-03-06 14:43:49 +00:00
Justin Hutchings
a1258f2a2e Fix icon issues 2024-03-04 20:07:08 +00:00
Justin Hutchings
29b9ef447a Fix icons and undefined/null checks 2024-03-04 20:03:39 +00:00
Justin Hutchings
b5a1aee21a Add debugging 2024-03-04 19:45:36 +00:00
Justin Hutchings
5bace73db3 Fix undefined/null checks 2024-03-04 19:38:52 +00:00
Justin Hutchings
f8ebb4b946 Add formatting around warning for low scorecard levels 2024-03-04 19:34:29 +00:00
Justin Hutchings
94125c4b1e Fix formatting issues 2024-03-04 18:38:53 +00:00
Justin Hutchings
9843156266 Improve summary formatting 2024-03-04 18:28:43 +00:00
Justin Hutchings
7d2e20d06d Stub out summary implementation for scorecards 2024-03-04 17:52:17 +00:00
Justin Holguín
35a52fd146 Minor tweaks to snapshot warnings 2023-09-07 18:00:57 +00:00
Justin Holguín
bed9726f78 Make snapshot warning messages clearer and more actionable 2023-09-07 17:54:42 +00:00
Justin Holguín
fcef41f1e0 Add docs link to snapshot warnings 2023-09-06 19:07:18 +00:00
Justin Holguín
ee86529290 Show all non-empty snapshot warnings 2023-08-23 18:45:35 +00:00
Adrien Pessu
6862f6f65f add groups 2023-08-07 14:07:26 +02:00
Adrien Pessu
309d082d5f initial commit 2023-08-07 14:07:26 +02:00
Stefan Petrushevski
f1c8401a59 resolve merge conflicts 2023-05-30 18:04:26 +02:00
Stefan Petrushevski
39dca1ce09 Adjusted output 2023-04-06 10:04:48 +02:00
Stefan Petrushevski
9ad7edb033 switched to purl format 2023-04-06 09:37:42 +02:00
Justin Holguín
0c01e947d6 Flesh out the warnings section a tiny bit 2023-03-23 23:26:23 +00:00
Justin Holguín
782549c724 Ignore snapshot_warnings for missing head snapshots 2023-03-23 22:59:07 +00:00
Justin Holguín
419396de41 Show snapshot warnings in the summary 2023-03-22 21:30:12 +00:00
Stefan Petrushevski
884b7abd2d updated summary output; create_summary.ts script 2023-03-08 13:02:59 +01:00
Stefan Petrushevski
600458c5dd licenses check exclusion list 2023-03-08 12:38:34 +01:00
David Losert
6b34d93738 Skips dependency review if no changes detected 2023-03-02 07:47:09 +00:00
David Losert
b7a25f4e9b Makes License Issues a single table per manifest 2023-03-02 07:43:23 +00:00
David Losert
1090cda9d5 Adjusts headlines and formatting for license issues 2023-02-28 12:28:20 +00:00
David Losert
b089c5b002 Adds conditional license summary 2023-02-28 11:08:39 +00:00
David Losert
6e66d136ec Reformats vulnerability section 2023-02-27 16:05:59 +00:00
David Losert
19ee172e7e feat: Adjusts the formatting and content for the status header 2023-02-22 14:05:52 +00:00
Josh Soref
03c7962be5 spelling: vulnerabilities
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
2022-12-08 11:04:05 -05:00
Josh Soref
a184554be2 spelling: minimum
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
2022-12-08 11:04:05 -05:00
Eric Cornelissen
84921e5e4a Simplify Summary summary based on license-check and vulnerability-check
Omit details related to the license check of vulnerability check from
the GitHub Actions Summary's summary if the respective check is disabled
from the configuration.
2022-10-28 22:15:44 +02:00
cnagadya
216fafaed5 PR feedback
Co-authored-by: Federico Builes <febuiles@github.com>
2022-10-28 11:23:05 +02:00
cnagadya
0144419c8e Format violations area 2022-10-27 16:43:45 +00:00
cnagadya
7b16bd0b54 Add unvalidated changes to summary 2022-10-27 16:24:30 +00:00
cnagadya
4525a8c091 Format summary findings 2022-10-27 15:41:19 +00:00
cnagadya
562a2f3c0a Improve summary formatting 2022-10-27 15:19:32 +00:00
cnagadya
022ea02fbb Add unresolved licenses section 2022-10-27 13:09:37 +00:00
Federico Builes
468485fc8e Clean up the main script a bit. 2022-09-27 12:25:12 +02:00
Federico Builes
cd3f55e8f9 Add all the dependencies to the review summary too. 2022-09-27 11:52:15 +02:00
Federico Builes
0515f5cb39 Adding a skeleton for scanned dependencies in the summary. 2022-09-26 19:14:04 +02:00
Tiago Pascoal
dfcdb87cb3 Fix typo
Co-authored-by: Eric Cornelissen <ericornelissen@gmail.com>
2022-08-07 12:36:42 +01:00
Tiago Pascoal
aef949f026 Show vulnerabities and license information on the job summary.
Users can see the results that were found directly on the job summary

All the results are grouped by manifest.

It shows a table with vulnerable packages, together with package version,
the vulnerabily info and it's severity.

Shows info about package licenses, which packages have a non allowed license,
and the list of packages with unknown licenses.
2022-08-04 15:35:07 +00:00