Skip to content

Commit

Permalink
Merge pull request #49 from google/update-to-v1.9.1
Browse files Browse the repository at this point in the history
Update to v1.9.1
  • Loading branch information
another-rex authored Nov 4, 2024
2 parents 8b8e186 + 1ab2a61 commit c411404
Show file tree
Hide file tree
Showing 6 changed files with 10 additions and 10 deletions.
6 changes: 3 additions & 3 deletions .github/workflows/osv-scanner-reusable-pr.yml
Original file line number Diff line number Diff line change
Expand Up @@ -56,7 +56,7 @@ jobs:
- name: "Checkout target branch"
run: git checkout $GITHUB_BASE_REF
- name: "Run scanner on existing code"
uses: google/osv-scanner-action/osv-scanner-action@c80d3cb8d7bfabae9f047f6b8ea68792dd2ebcf6 # v1.9.0
uses: google/osv-scanner-action/osv-scanner-action@cbb0295db259bba04d38625792c18646ed18bc89 # v1.9.1
continue-on-error: true
with:
scan-args: |-
Expand All @@ -67,15 +67,15 @@ jobs:
# Use -f in case any changes were made by osv-scanner (there should be no changes)
run: git checkout -f $GITHUB_SHA
- name: "Run scanner on new code"
uses: google/osv-scanner-action/osv-scanner-action@c80d3cb8d7bfabae9f047f6b8ea68792dd2ebcf6 # v1.9.0
uses: google/osv-scanner-action/osv-scanner-action@cbb0295db259bba04d38625792c18646ed18bc89 # v1.9.1
with:
scan-args: |-
--format=json
--output=new-results.json
${{ inputs.scan-args }}
continue-on-error: true
- name: "Run osv-scanner-reporter"
uses: google/osv-scanner-action/osv-reporter-action@c80d3cb8d7bfabae9f047f6b8ea68792dd2ebcf6 # v1.9.0
uses: google/osv-scanner-action/osv-reporter-action@cbb0295db259bba04d38625792c18646ed18bc89 # v1.9.1
with:
scan-args: |-
--output=${{ inputs.results-file-name }}
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/osv-scanner-reusable.yml
Original file line number Diff line number Diff line change
Expand Up @@ -64,15 +64,15 @@ jobs:
name: "${{ inputs.download-artifact }}"
path: "./"
- name: "Run scanner"
uses: google/osv-scanner-action/osv-scanner-action@c80d3cb8d7bfabae9f047f6b8ea68792dd2ebcf6 # v1.9.0
uses: google/osv-scanner-action/osv-scanner-action@cbb0295db259bba04d38625792c18646ed18bc89 # v1.9.1
with:
scan-args: |-
--output=results.json
--format=json
${{ inputs.scan-args }}
continue-on-error: true
- name: "Run osv-scanner-reporter"
uses: google/osv-scanner-action/osv-reporter-action@c80d3cb8d7bfabae9f047f6b8ea68792dd2ebcf6 # v1.9.0
uses: google/osv-scanner-action/osv-reporter-action@cbb0295db259bba04d38625792c18646ed18bc89 # v1.9.1
with:
scan-args: |-
--output=${{ inputs.results-file-name }}
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/osv-scanner-unified-workflow.yml
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,7 @@ permissions:
jobs:
scan-scheduled:
if: ${{ github.event_name == 'push' || github.event_name == 'schedule' }}
uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@1748759ebfcc44efbab41fc085665c64558eb9da" # v1.9.0
uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@8bd1ce1c4be9d98053ffd9e6e14585276a36762c" # v1.9.1
with:
# Example of specifying custom arguments
scan-args: |-
Expand All @@ -44,7 +44,7 @@ jobs:
./
scan-pr:
if: ${{ github.event_name == 'pull_request' || github.event_name == 'merge_group' }}
uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@1748759ebfcc44efbab41fc085665c64558eb9da" # v1.9.0
uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@8bd1ce1c4be9d98053ffd9e6e14585276a36762c" # v1.9.1
with:
# Example of specifying custom arguments
scan-args: |-
Expand Down
2 changes: 1 addition & 1 deletion README.md
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
# OSV-Scanner CI/CD Action

[![Release v1.9.0](https://img.shields.io/badge/release-v1.9.0-blue?style=flat)](https://github.com/google/osv-scanner-action/releases)
[![Release v1.9.1](https://img.shields.io/badge/release-v1.9.1-blue?style=flat)](https://github.com/google/osv-scanner-action/releases)
<!-- Hard coded release version -->

The OSV-Scanner CI/CD action leverages the [OSV.dev](https://osv.dev/) database and the [OSV-Scanner](https://google.github.io/osv-scanner/) CLI tool to track and notify you of known vulnerabilities in your dependencies for over 11 [languages and ecosystems](https://google.github.io/osv-scanner/supported-languages-and-lockfiles/).
Expand Down
2 changes: 1 addition & 1 deletion osv-reporter-action/action.yml
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ inputs:
required: true
runs:
using: "docker"
image: "docker://ghcr.io/google/osv-scanner-action:v1.9.0"
image: "docker://ghcr.io/google/osv-scanner-action:v1.9.1"
entrypoint: /root/osv-reporter
args:
- "${{ inputs.scan-args }}"
2 changes: 1 addition & 1 deletion osv-scanner-action/action.yml
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,6 @@ inputs:
./
runs:
using: "docker"
image: "docker://ghcr.io/google/osv-scanner-action:v1.9.0"
image: "docker://ghcr.io/google/osv-scanner-action:v1.9.1"
args:
- ${{ inputs.scan-args }}

0 comments on commit c411404

Please sign in to comment.