Release v1.5.0 #66
Merged
Release v1.5.0 #66
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add option to disable Docker image build and vulnerability scanning for projects without Dockerfile (e.g., CLI tools). When enable_docker_scan is false: - Trivy filesystem secret scanning still runs - Docker image build is skipped - Docker vulnerability scanning is skipped Also updated documentation with: - New input description - CLI/Non-Docker projects usage example - Updated runner_type default to blacksmith - Simplified secrets to use inherit Co-authored-by: factory-droid[bot] <138933559+factory-droid[bot]@users.noreply.github.com>
- Add CLI/Non-Docker support to features list - Update workflow steps to show conditional Docker steps - Update best practices with blacksmith runners and secrets inherit - Update all examples to use secrets: inherit - Update runner_type in examples to blacksmith-4vcpu-ubuntu-2404 Co-authored-by: factory-droid[bot] <138933559+factory-droid[bot]@users.noreply.github.com>
Updated all workflow documentation examples to use `secrets: inherit` instead of explicit secret mappings. This simplifies secret management and makes workflows more consistent. Files updated: - api-dog-e2e-tests-workflow.md - gitops-update-workflow.md - go-pr-analysis-workflow.md - go-release-workflow.md - pr-security-scan-workflow.md - pr-validation-workflow.md - release-workflow.md - slack-notify-workflow.md Added required secrets notes where appropriate to document which secrets must be configured at the organization/repository level. Co-authored-by: factory-droid[bot] <138933559+factory-droid[bot]@users.noreply.github.com>
Co-authored-by: factory-droid[bot] <138933559+factory-droid[bot]@users.noreply.github.com>
…p-docker feat(pr-security-scan): add enable_docker_scan input for CLI projects
|
Caution Review failedThe pull request is closed. WalkthroughThis pull request implements two primary changes: (1) it introduces a new Possibly related PRs
Suggested labels
Suggested reviewers
📜 Recent review detailsConfiguration used: Organization UI Review profile: CHILL Plan: Pro 📒 Files selected for processing (9)
Comment |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Changes
New Features
enable_docker_scaninput to skip Docker-related steps for CLI projects without DockerfilesDocumentation
secrets: inheritpatternCommits
8b7dac9 Merge pull request #65 from LerianStudio/feature/pr-security-scan-skip-docker
2360cd1 docs: update api-dog troubleshooting to use secrets: inherit
a0d6ede docs: standardize all workflow documentation to use secrets: inherit
a0ccaa7 docs: update pr-security-scan documentation
81b55a6 feat(pr-security-scan): add enable_docker_scan input
Summary by CodeRabbit
New Features
enable_docker_scanparameter.Chores
✏️ Tip: You can customize this high-level summary in your review settings.