mirror of
https://github.com/corda/corda.git
synced 2024-12-24 07:06:44 +00:00
Merge pull request #7390 from corda/connelm/ES-562/snyk-submodules-to-scan48
ES-562: Correct modules to scan for C4 OS Snyk scan nightly
This commit is contained in:
commit
746e16bca0
@ -3,5 +3,5 @@
|
|||||||
cordaSnykScanPipeline (
|
cordaSnykScanPipeline (
|
||||||
snykTokenId: 'c4-os-snyk-api-token-secret',
|
snykTokenId: 'c4-os-snyk-api-token-secret',
|
||||||
// specify the Gradle submodules to scan and monitor on snyk Server
|
// specify the Gradle submodules to scan and monitor on snyk Server
|
||||||
modulesToScan: ['node', 'capsule', 'bridge', 'bridgecapsule']
|
modulesToScan: ['node', 'capsule']
|
||||||
)
|
)
|
||||||
|
2
.ci/dev/regression/Jenkinsfile
vendored
2
.ci/dev/regression/Jenkinsfile
vendored
@ -90,7 +90,7 @@ pipeline {
|
|||||||
steps {
|
steps {
|
||||||
script {
|
script {
|
||||||
// Invoke Snyk for each Gradle sub project we wish to scan
|
// Invoke Snyk for each Gradle sub project we wish to scan
|
||||||
def modulesToScan = ['node', 'capsule', 'bridge', 'bridgecapsule']
|
def modulesToScan = ['node', 'capsule']
|
||||||
modulesToScan.each { module ->
|
modulesToScan.each { module ->
|
||||||
snykSecurityScan("${env.SNYK_API_KEY}", "--sub-project=$module --configuration-matching='^runtimeClasspath\$' --prune-repeated-subdependencies --debug --target-reference='${env.BRANCH_NAME}' --project-tags=Branch='${env.BRANCH_NAME.replaceAll("[^0-9|a-z|A-Z]+","_")}'")
|
snykSecurityScan("${env.SNYK_API_KEY}", "--sub-project=$module --configuration-matching='^runtimeClasspath\$' --prune-repeated-subdependencies --debug --target-reference='${env.BRANCH_NAME}' --project-tags=Branch='${env.BRANCH_NAME.replaceAll("[^0-9|a-z|A-Z]+","_")}'")
|
||||||
}
|
}
|
||||||
|
2
.github/workflows/check-pr-title.yml
vendored
2
.github/workflows/check-pr-title.yml
vendored
@ -9,6 +9,6 @@ jobs:
|
|||||||
steps:
|
steps:
|
||||||
- uses: morrisoncole/pr-lint-action@v1.4.1
|
- uses: morrisoncole/pr-lint-action@v1.4.1
|
||||||
with:
|
with:
|
||||||
title-regex: '^((CORDA|AG|EG|ENT|INFRA|NAAS)-\d+|NOTICK)(.*)'
|
title-regex: '^((CORDA|AG|EG|ENT|INFRA|ES)-\d+|NOTICK)(.*)'
|
||||||
on-failed-regex-comment: "PR title failed to match regex -> `%regex%`"
|
on-failed-regex-comment: "PR title failed to match regex -> `%regex%`"
|
||||||
repo-token: "${{ secrets.GITHUB_TOKEN }}"
|
repo-token: "${{ secrets.GITHUB_TOKEN }}"
|
||||||
|
Loading…
Reference in New Issue
Block a user