mirror/insomnia
1
0
Fork 0
mirror of https://github.com/Kong/insomnia.git synced 2026-04-23 15:49:42 -04:00
Code Issues Packages Projects Releases Wiki Activity

bump/security-actions (#8510)

Browse Source
This commit is contained in:
Jack Kavanagh
2025-03-25 17:03:09 +01:00
committed by GitHub
parent 8fa27fc8ef
commit 10e1ded7dc
2 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
.github/workflows/release-build.yml vendored
View File

@@ -27,7 +27,7 @@ jobs:
# (TODO): Produce workspace/package specific SBOM. Current limitation: https://github.com/anchore/syft/issues/2574
# (TODO): needs check (block) further steps if SCA fails
- id: sca-project
uses: Kong/public-shared-actions/security-actions/sca@28d20a1f492927f35b00b317acd78f669c45f88b # v2.7.3
uses: Kong/public-shared-actions/security-actions/sca@a18abf762d6e2444bcbfd20de70451ea1e3bc1b1 # v4.1.1
with:
dir: .
upload-sbom-release-assets: false
@@ -221,7 +221,7 @@ jobs:
- name: Scan inso docker artifacts
id: sbom_action
if: runner.os == 'Linux' && runner.arch == 'X64'
uses: Kong/public-shared-actions/security-actions/scan-docker-image@28d20a1f492927f35b00b317acd78f669c45f88b # v2.7.3
uses: Kong/public-shared-actions/security-actions/scan-docker-image@a18abf762d6e2444bcbfd20de70451ea1e3bc1b1 # v4.1.1
with:
asset_prefix: image-inso-${{ runner.os }}-${{ runner.arch }}
image: ./packages/${{ env.INSO_PACKAGE_NAME }}/artifacts/${{ env.INSO_DOCKER_TAR }}

2
.github/workflows/sast.yml vendored
View File

@@ -25,4 +25,4 @@ jobs:
steps:
- uses: actions/checkout@v4
- uses: Kong/public-shared-actions/security-actions/semgrep@11e80bb231ae182696a52f7ec7b0b9fae53303bf # 4.0.0
- uses: Kong/public-shared-actions/security-actions/semgrep@a18abf762d6e2444bcbfd20de70451ea1e3bc1b1 # 4.0.1