Skip to content

Commit

Permalink
CodeQL Action v2 to v3 & Upload Artifact v3 to v4 (#1300)
Browse files Browse the repository at this point in the history 
* Updated CodeQL Actionv2 to v3

Signed-off-by: noopur <[email protected]>

* Upload artifact v3 to v4

Signed-off-by: noopur <[email protected]>

---------

Signed-off-by: noopur <[email protected]>
  • Loading branch information
@noopurintel
noopurintel authored Jan 23, 2025
1 parent 22e7dab commit 9d45112
Show file tree
Hide file tree
Showing 3 changed files with 7 additions and 7 deletions.
2 changes: 1 addition & 1 deletion .github/workflows/docker-bench-security.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -51,7 +51,7 @@ jobs:
docker-bench-security | tee results/docker_bench_security_report.txt
- name: Upload Security Bench Report
uses: actions/upload-artifact@v3
uses: actions/upload-artifact@v4
with:
name: docker_bench_security-report
path: results/docker_bench_security_report.txt
2 changes: 1 addition & 1 deletion .github/workflows/hadolint.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,7 +31,7 @@ jobs:
docker run -v ${PWD}/openfl-docker:/openfl-docker --rm -i hadolint/hadolint hadolint -t error /openfl-docker/Dockerfile.base
docker run -v ${PWD}/openfl-docker:/openfl-docker --rm -i hadolint/hadolint hadolint -t error -f json /openfl-docker/Dockerfile.base > hadolint_output.json
- name: Upload Hadolint JSON Report
uses: actions/upload-artifact@v3
uses: actions/upload-artifact@v4
with:
name: hadolint-report
path: hadolint_output.json
10 changes: 5 additions & 5 deletions .github/workflows/trivy.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,7 @@ jobs:
TRIVY_DB_REPOSITORY: 'ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db'

- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v2
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: 'trivy-results.sarif'

Expand All @@ -55,7 +55,7 @@ jobs:
.
- name: Upload Code Vulnerability Scan Results
uses: actions/upload-artifact@v3
uses: actions/upload-artifact@v4
with:
name: trivy-code-report-json
path: trivy-code-results.json
Expand All @@ -74,7 +74,7 @@ jobs:
TRIVY_DB_REPOSITORY: 'ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db'

- name: Upload Docker Vulnerability Scan
uses: actions/upload-artifact@v3
uses: actions/upload-artifact@v4
with:
name: trivy-docker-report-json
path: trivy-docker-results.json
Expand All @@ -91,7 +91,7 @@ jobs:
.
- name: Upload Code Vulnerability Scan Results
uses: actions/upload-artifact@v3
uses: actions/upload-artifact@v4
with:
name: trivy-code-spdx-report-json
path: trivy-code-spdx-results.json
Expand All @@ -110,7 +110,7 @@ jobs:
TRIVY_DB_REPOSITORY: 'ghcr.io/aquasecurity/trivy-db,public.ecr.aws/aquasecurity/trivy-db'

- name: Upload Docker Vulnerability Scan
uses: actions/upload-artifact@v3
uses: actions/upload-artifact@v4
with:
name: trivy-docker-spdx-report-json
path: trivy-docker-spdx-results.json

0 comments on commit 9d45112

Please sign in to comment.