-
Notifications
You must be signed in to change notification settings - Fork 303
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge remote-tracking branch 'upstream/release/2.6' into mjmac/google…
…/2.6 Required-githooks: true Change-Id: I9a00365e096ca292a5530b9d9f2ed99ba0e50f2f
- Loading branch information
Showing
92 changed files
with
2,751 additions
and
888 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,70 @@ | ||
name: Trivy scan | ||
|
||
on: | ||
workflow_dispatch: | ||
push: | ||
branches: ["master", "release/**"] | ||
pull_request: | ||
branches: ["master", "release/**"] | ||
|
||
# Declare default permissions as nothing. | ||
permissions: {} | ||
|
||
jobs: | ||
build: | ||
name: Build | ||
runs-on: ubuntu-20.04 | ||
steps: | ||
- name: Checkout code | ||
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | ||
|
||
- name: Run Trivy vulnerability scanner in repo mode | ||
uses: aquasecurity/trivy-action@6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8 # 0.24.0 | ||
with: | ||
scan-type: 'fs' | ||
scan-ref: '.' | ||
trivy-config: 'utils/trivy/trivy.yaml' | ||
|
||
- name: Prepare the report to be uploaded to the GitHub artifact store | ||
run: | | ||
mkdir report | ||
cp trivy-report-daos.txt report | ||
cp utils/trivy/.trivyignore report/trivyignore.txt | ||
- name: Upload the report to the GitHub artifact store | ||
uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3 | ||
with: | ||
path: report/* | ||
name: trivy-report-daos | ||
|
||
- name: Adjust config file to use sarif format | ||
run: | | ||
sed -i 's/output: "trivy-report-daos.txt"/output: "trivy-results.sarif"/g' \ | ||
utils/trivy/trivy.yaml | ||
sed -i 's/format: template/format: sarif/g' utils/trivy/trivy.yaml | ||
- name: Run Trivy vulnerability scanner in repo mode | ||
uses: aquasecurity/trivy-action@6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8 # 0.24.0 | ||
with: | ||
scan-type: 'fs' | ||
scan-ref: '.' | ||
trivy-config: 'utils/trivy/trivy.yaml' | ||
|
||
- name: Upload Trivy scan results to GitHub Security tab | ||
uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a | ||
# 3.25.15 (v3) | ||
with: | ||
sarif_file: 'trivy-results.sarif' | ||
|
||
- name: Adjust config file to show and validate scan results | ||
run: | | ||
sed -i 's/output: "trivy-results.sarif"//g' utils/trivy/trivy.yaml | ||
sed -i 's/format: sarif/format: table/g' utils/trivy/trivy.yaml | ||
sed -i 's/exit-code: 0/exit-code: 1/g' utils/trivy/trivy.yaml | ||
- name: Run Trivy vulnerability scanner in repo mode | ||
uses: aquasecurity/trivy-action@6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8 # 0.24.0 | ||
with: | ||
scan-type: 'fs' | ||
scan-ref: '.' | ||
trivy-config: 'utils/trivy/trivy.yaml' |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1 +1 @@ | ||
2.6.1-rc3 | ||
2.6.2-tb1 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1 +1 @@ | ||
2.6.1 | ||
2.6.2 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,3 +1,9 @@ | ||
daos (2.6.2-1) unstable; urgency=medium | ||
[ Phillip Henderson ] | ||
* First test build for 2.6.2 | ||
|
||
-- Phillip Henderson <[email protected]> Tue, 05 Nov 2024 23:25:00 -0500 | ||
|
||
daos (2.6.1-4) unstable; urgency=medium | ||
[ Tomasz Gromadzki ] | ||
* Add support of the PMDK package 2.1.0 with NDCTL enabled. | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.