Skip to content

Commit

Permalink
🔨 add oauth2.sigstore.dev:443 endpoint to allowed
Browse files Browse the repository at this point in the history 
Signed-off-by: rjdbcm <[email protected]>
  • Loading branch information
@rjdbcm
rjdbcm committed Sep 8, 2024
1 parent ce0c854 commit c22767a
Show file tree
Hide file tree
Showing 2 changed files with 7 additions and 0 deletions.
3 changes: 3 additions & 0 deletions .github/workflows/dev-workflow.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,7 @@ jobs:
fulcio.sigstore.dev:443
rekor.sigstore.dev:443
tuf-repo-cdn.sigstore.dev:443
oauth2.sigstore.dev:443
- uses: OZI-Project/[email protected]

Check warning

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io
Click Remediation section below for further remediation help
with:
Expand Down Expand Up @@ -65,6 +66,7 @@ jobs:
fulcio.sigstore.dev:443
rekor.sigstore.dev:443
tuf-repo-cdn.sigstore.dev:443
oauth2.sigstore.dev:443
- uses: OZI-Project/[email protected]

Check warning

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io
Click Remediation section below for further remediation help
with:
Expand Down Expand Up @@ -94,6 +96,7 @@ jobs:
fulcio.sigstore.dev:443
rekor.sigstore.dev:443
tuf-repo-cdn.sigstore.dev:443
oauth2.sigstore.dev:443
- uses: OZI-Project/[email protected]

Check warning

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io
Click Remediation section below for further remediation help
with:
Expand Down
4 changes: 4 additions & 0 deletions .github/workflows/dist-workflow.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,7 @@ jobs:
fulcio.sigstore.dev:443
rekor.sigstore.dev:443
tuf-repo-cdn.sigstore.dev:443
oauth2.sigstore.dev:443
- uses: OZI-Project/[email protected]

Check warning

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io
Click Remediation section below for further remediation help
with:
Expand Down Expand Up @@ -68,6 +69,7 @@ jobs:
fulcio.sigstore.dev:443
rekor.sigstore.dev:443
tuf-repo-cdn.sigstore.dev:443
oauth2.sigstore.dev:443
- uses: OZI-Project/[email protected]

Check warning

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io
Click Remediation section below for further remediation help
with:
Expand Down Expand Up @@ -98,6 +100,7 @@ jobs:
fulcio.sigstore.dev:443
rekor.sigstore.dev:443
tuf-repo-cdn.sigstore.dev:443
oauth2.sigstore.dev:443
- uses: OZI-Project/[email protected]

Check warning

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io
Click Remediation section below for further remediation help
with:
Expand Down Expand Up @@ -179,6 +182,7 @@ jobs:
quay.io:443
cdn03.quay.io:443
downloads.python.org:443
oauth2.sigstore.dev:443
- uses: OZI-Project/[email protected]

Check warning

Code scanning / Scorecard

Pinned-Dependencies Medium

score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io
Click Remediation section below for further remediation help
id: release
Expand Down

0 comments on commit c22767a

Please sign in to comment.