Skip to content

v0.10.0
Compare
Choose a tag to compare
@github-actions github-actions released this 13 May 15:52
· 106 commits to main since this release
v0.10.0
1e23b68
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Warning this feature has breaking changes in the CLI arguments.

New features

  • version command (commit)
  • Allow for configuration of OPA rules (#60)
  • Add CLI flag for configuration file (#61)
  • Add support for new attestations permissions (#62)
  • BREAKING CHANGE : Switch to Cobra / Viper for CLI parsing (#65) -- See notes
  • Allow loading optional Rego rules (#66)
  • Support untrusted code checkout exec with workflow_run (#68)
  • Add option to filter forks (--ignore-forks) (#73)

Bug fixes

  • fixed handling of environment names in GitHub Actions workflows (#56)
  • add debug logs on workflow parsing errors (#59)
  • Fix verbose logging (#67)
  • Hard fail with no repo returned - handles cases where you make a typo in org name (#79 , #80 )

Chores

  • Updated various GitHub Actions and other dependencies
  • Avoid using caches with setup-go

Changelog

  • 9ae3527 Add Filter Out Forks For Analyze Org (#73)
  • c1a275a Add Version Command
  • 7ea7e88 Bump actions/checkout from 4.1.1 to 4.1.4 (#42)
  • dae4c74 Bump actions/dependency-review-action from 2.5.1 to 4.3.2 (#43)
  • a5446f0 Bump actions/upload-artifact from 3.1.3 to 4.3.3 (#46)
  • eeacf8c Bump github.com/open-policy-agent/opa from 0.63.0 to 0.64.1 (#48)
  • 8d2db62 Bump github/codeql-action from 2.24.10 to 3.25.3 (#45)
  • 28464c0 Bump step-security/harden-runner from 2.7.0 to 2.7.1 (#44)
  • e096b80 Error out when we encounter an organization with no repos present. That could indicate improper auth or a typo in the org name. Added skipping of printing the results if no findings are present (#79)
  • 1db7a09 Opa config (#60)
  • 05f27f2 Update release.yml (#72)
  • a7fa79b [Breaking Changes] Switch to Use Cobra/Viper for CLI and Config Handling (#64)
  • cb6ce21 add cli flag for config file path (#61)
  • 41dc64c add debug logs on workflow parsing errors (#59)
  • e0d6048 add github actions attestations scope to write-all (#62)
  • 3b4b230 adding ignore-forks flag example and config file (#77)
  • 140abab fix: ensure CLI args don't equal to legacyFlag (#66)
  • 28572a4 fix: github actions handle string environment name (#56)
  • 3b7e231 fix: verbose log level (#67)
  • 49a9cf9 load additional Rego files (#65)
  • 1e23b68 only the pretty formatter should skip outputing (#80)
  • 279c380 untrusted_checkout_exec: consider workflow_run triggered from PRs (#68)
  • fc37055 use viper.SetConfigName (#69)
Assets 20
Loading