Skip to content

fix: use main branch for checkout security-scanning #324

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
JonasPollokZweitag merged 60 commits into from
Jan 27, 2026
Merged

fix: use main branch for checkout security-scanning #324

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
60 commits
Select commit Hold shift + click to select a range
b6cf6c7
chore: add setup-python action
Dec 17, 2025
2f7eba8
chore: add setup-trivy action
Dec 17, 2025
691003c
chore: add test reporter templates
Dec 17, 2025
1d7267e
chore: add scan report -> ctrf converter
Dec 17, 2025
e41d141
chore: add first version of configurable security scan action
Dec 18, 2025
2a6187f
fix: : with space
Dec 18, 2025
ee9857b
fix: removed double steps call
Dec 18, 2025
8252341
chore: added real name
Dec 18, 2025
704a27b
Merge branch 'main' into chore--create-configurable-Security-Scan
kevinkupski Jan 2, 2026
d3b557b
chore: split in two different workflows
Jan 14, 2026
4f5b774
chore: removed python setup action
Jan 14, 2026
88e4e26
chore: use format instead of +
Jan 14, 2026
73bf961
chore: removed dependency to removed step
Jan 14, 2026
73e6ab9
fix: set missing required parameter
Jan 14, 2026
af16ef4
chore: renamed GITHUB_TOKEN secret
Jan 14, 2026
a53cd54
chore: use native bash for retry
Jan 14, 2026
9ed9eab
chore: checkout scripts in checkov workflow
Jan 14, 2026
60a208d
fix: wrong indentation
Jan 14, 2026
6cede3f
fix: wrong indentation
Jan 14, 2026
c97c47c
fix: remove quotes from boolean
Jan 14, 2026
8ff1cac
test: added branch reference to scanning checkout
Jan 14, 2026
a23df45
chore: checkout security scripts from repo
Jan 14, 2026
57c4eaf
fix: removed quotes from boolean
Jan 14, 2026
0c7a2e1
fix: -o instead of >
Jan 14, 2026
0977cd2
fix: enable continue on error
Jan 15, 2026
f7b8cd4
chore: renamed trivyconfig2ctrf convert script
Jan 15, 2026
7b87f9b
chore: reduced scans to one job
Jan 15, 2026
c0643f6
fix: single quotes instead of double
Jan 15, 2026
c0fc269
fix: indetation
Jan 15, 2026
c5eea69
chore: only allow one ticket assignee
Jan 20, 2026
46796ab
chore: add converter and template for filesystem
Jan 20, 2026
aa922d6
chore: removed @ in assignees array
Jan 20, 2026
d855220
chore: use configureable severity level
Jan 20, 2026
b874941
chore: changed secret check to bool
Jan 20, 2026
495f1b0
chore: severities need all levels that are to displayed
Jan 20, 2026
98bfa36
fix: set assignee right
Jan 20, 2026
218eae7
chore: removed ticket assignment
Jan 20, 2026
38013c9
test: count severities seperate in image scan
Jan 20, 2026
3686b2b
chore: little format changes
Jan 20, 2026
ab313b2
chore: extende title in config scan
Jan 20, 2026
57a88a6
chore: removed references from image scan summary
Jan 20, 2026
ffdfc7b
chore: removed trivy setup action
Jan 20, 2026
cb2c656
chore: redesigned summary tables
Jan 20, 2026
143a0b4
fix: use valid ifs
Jan 20, 2026
169a6c6
chore: renamed trivyignorefile -> ignorefile
Jan 20, 2026
d99f648
chore: add Readme for security scans
Jan 20, 2026
ef78535
chore: small changes in templates
Jan 20, 2026
72c1b07
chore: add test workflow for security scan
Jan 20, 2026
d11fb9b
chore: add Healthcheck to test image
Jan 20, 2026
3e82945
chore: CRITICAL instead of any
Jan 20, 2026
a5e6e2a
chore: use Test Image that ist empty
Jan 20, 2026
312c69f
chore: removed sum of fs scan report
Jan 20, 2026
05810a7
chore: create checkov baseline for tests
Jan 20, 2026
86c7158
chore: add check in checkov converter to avoid error
Jan 20, 2026
c38ec34
chore: fix issue creation bug
Jan 21, 2026
665097e
chore: make suggested changes
JonasPollokZweitag Jan 27, 2026
58bbf05
chore: pin to v0.2.5 - latest not working
JonasPollokZweitag Jan 27, 2026
304576c
fix: use main branch for security checkout
JonasPollokZweitag Jan 27, 2026
5190a7f
fix: use main to checkout security-scanning scripts
JonasPollokZweitag Jan 27, 2026
cca26ea
Merge branch 'main' into fix--use-main-branch-for-checkout
JonasPollokZweitag Jan 27, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/workflows/checkov-scan.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -45,7 +45,7 @@ jobs:
uses: actions/checkout@v4
with:
repository: zweitag/github-actions
ref: chore--create-configurable-Security-Scan
ref: main
path: _security-tools
sparse-checkout: security-scanning

Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/trivy-scan.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -64,7 +64,7 @@ jobs:
uses: actions/checkout@v4
with:
repository: zweitag/github-actions
ref: chore--create-configurable-Security-Scan
ref: main
path: _security-tools
sparse-checkout: security-scanning

Expand Down