Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* feat(.github): add FOSSA configuration file to define experimentalKeywordSearch feat(.github/workflows): add FOSSA workflow for License Compliance and Security Check using FOSSA CLI * fix(fossa.yml): remove unnecessary -c flag from fossa snippets analyze command to simplify the command and improve readability * chore(fossa.yml): update FOSSA CLI commands to use the correct subcommands for snippets analysis and commit * fix(fossa.yml): update fossa snippets commit command to use correct analyze-output flag value * chore(fossa.yml): add branch name to FOSSA analyze command for better tracking and analysis of dependencies * chore(fossa.yml): add FOSSA Report step to generate attribution report in SPDX format * chore(fossa.yml): add JSON output option to FOSSA Analyze for better automation feat(fossa.yml): introduce FOSSA Report step to generate markdown format report feat(fossa.yml): include FOSSA SBOM Report step to generate SPDX format report for attribution tracking * refactor(fossa.yml): remove FOSSA Report step as it is redundant with FOSSA SBOM Report step and does not provide additional value * fix(fossa.yml): remove unnecessary --json flag from fossa analyze command to prevent output file creation * chore(fossa.yml): remove unnecessary --output flag from fossa analyze command feat(fossa.yml): add fossa test job to run FOSSA test command for checking dependencies * chore(fossa.yml): add unique IDs to each job for better tracking and debugging feat(fossa.yml): implement PR decoration with FOSSA test outcomes and details to provide visibility and context on PRs * chore(fossa.yml): update FOSSA workflow to include inputs for running snippets detection, AI generated code detection, and generating SBOM report feat(fossa.yml): add conditional checks to run FOSSA Snippets Detection, Generate Snippet Dependencies, and FOSSA Analyze based on input flags feat(fossa.yml): add permissions for write-all to the fossa-scan job to ensure necessary access for the workflow feat(fossa.yml): add conditional check to run FOSSA Analyze with AI Generated Code Detection based on input flag feat(fossa.yml): add conditional check to run FOSSA Analyze without AI Generated Code Detection based on input flag feat(fossa.yml): add conditional check to run FOSSA SBOM Report based on input flag * chore(fossa.yml): update description for generate_sbom to "Generate FOSSA SBOM Report" for clarity chore(fossa.yml): update issue_number to context.payload.pull_request.number to correctly reference PR number * fix(fossa.yml): update issue_number to use the correct pull_request object to fix comment creation issue * chore(fossa.yml): comment out fossa report attribution command to prevent it from running as it is currently causing issues * chore(fossa.yml): add GitHub actions to create comments on issues and pull requests feat(fossa.yml): enhance user interaction by adding comments with emojis on PRs * refactor(fossa.yml): remove unnecessary GitHub actions for creating comments and simplify FOSSA test command to improve workflow readability and efficiency * style(fossa.yml): update FOSSA Snippets Detection and Test output formatting for better readability and clarity * chore(fossa.yml): update run_link text to 'Run details' for better clarity chore(fossa.yml): update placeholders in output template to use double curly braces for consistency * style(fossa.yml): remove extra whitespace before the FOSSA Test section to improve readability * chore(fossa.yml): update GitHub Actions workflow to include separate steps for snippets detection and test decoration based on pull request event conditions * fix(fossa.yml): redirect fossa analyze and test commands output to files and display them in job summary for better visibility feat(fossa.yml): add logic to handle long output by truncating and providing link to full log for snippets and test commands * refactor(fossa.yml): remove FOSSA Test Decoration step as it is no longer needed * chore(fossa.yml): refactor FOSSA workflow to improve readability and add support for displaying test output in comments on pull requests * chore(fossa.yml): redirect fossa analyze output to analyze.out file for better visibility and debugging feat(fossa.yml): add label to PR with 'AI Generated Code' if analyze output contains 'GitHub Copilot generated code' to easily identify AI generated code * chore(fossa.yml): add id to the 'Run FOSSA Analyze' job for better identification feat(fossa.yml): introduce FOSSA AI Detection Decoration step to analyze and decorate PRs with AI-generated code detection information * chore(fossa.yml): update default values for FOSSA workflows to be false to improve workflow efficiency and prevent unnecessary scans * chore(fossa.yml): update FOSSA workflow to generate SBOM report in HTML format feat(fossa.yml): add step to archive FOSSA SBOM report as an artifact for later use * chore(fossa.yml): redirect fossa analyze command output to analyze.out file for better visibility and debugging purposes * fix(fossa.yml): update references to the correct step name for AI detection outcome fix(fossa.yml): redirect fossa report attribution output to sbom.html file for artifact upload * fix(fossa.yml): add branch name to FOSSA snippets and analyze commands for better tracking and analysis of code changes * fix(fossa.yml): update FOSSA CLI commands to use github.head_ref if available to support pull request workflows and fallback to github.ref_name if not present * fix(fossa.yml): remove unnecessary branch flag from fossa snippets analyze command fix(fossa.yml): add branch flag to fossa analyze command to ensure correct branch analysis * fix(fossa.yml): add logic to remove 'AI Generated Code' label if not AI generated code to maintain label accuracy and consistency * chore(fossa.yml): remove continue-on-error flag to ensure FOSSA test job fails on error for better error handling and visibility * chore: update build-logic version to v0.6.8 in GitHub workflows and README to align with the latest changes and improvements made in the new version * chore(fossa.yml): update FOSSA configuration file URL to use the latest version v0.6.8 for compatibility with the build logic
- Loading branch information
