1
0
Fork 0
mirror of https://github.com/cisagov/log4j-affected-db.git synced 2024-11-14 12:57:55 +00:00
Commit graph

1795 commits

Author SHA1 Message Date
Nicholas McDonnell
6767ea9d93
Merge github.com:cisagov/skeleton-generic into lineage/skeleton 2022-04-08 16:44:54 -04:00
Nick
4215ba378e
Merge pull request #109 from cisagov/improvement/add_github_actions_pre-commit_hooks
Add `pre-commit` hooks to validate GitHub Actions content
2022-04-06 14:08:46 -04:00
Nicholas McDonnell
49d87d40e4
Add pre-commit hooks to validate GitHub Actions content
Add hooks to validate GitHub Actions and GitHub Action workflows. These
are validated using JSON Schemas.
2022-04-01 16:46:16 -04:00
Nick
da532a590f
Merge pull request #105 from cisagov/maintenance/update_pre-commit_hooks
Update `pre-commit` hooks
2022-04-01 13:24:57 -04:00
Nick
57d6ac04b0
Merge branch 'develop' into maintenance/update_pre-commit_hooks 2022-04-01 13:19:34 -04:00
Nick
504ed9ed45
Merge pull request #106 from cisagov/improvement/use_python_3.10_for_gha
Use Python 3.10 for the `lint` job in GitHub Actions
2022-04-01 13:19:24 -04:00
Nick
14aff9cadc
Merge branch 'develop' into improvement/use_python_3.10_for_gha 2022-04-01 13:13:47 -04:00
Nick
d168151a3c
Merge pull request #104 from cisagov/dependabot/github_actions/actions/cache-3
Bump actions/cache from 2 to 3
2022-04-01 13:13:36 -04:00
Nick
a9c93d0ff9
Merge pull request #107 from cisagov/improvement/add_dependabot_ignores_for_github_actions
Add Dependabot ignore directives
2022-04-01 13:10:46 -04:00
Nick
496ea93027
Merge branch 'develop' into improvement/add_dependabot_ignores_for_github_actions 2022-04-01 12:29:17 -04:00
dependabot[bot]
c576ef56fb
Bump actions/cache from 2 to 3
Bumps [actions/cache](https://github.com/actions/cache) from 2 to 3.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](https://github.com/actions/cache/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-01 16:22:39 +00:00
Nick
e190ae75db
Merge pull request #102 from cisagov/dependabot/github_actions/actions/checkout-3
Bump actions/checkout from 2 to 3
2022-04-01 12:22:32 -04:00
Nick
6869c6830f
Merge branch 'develop' into dependabot/github_actions/actions/checkout-3 2022-04-01 12:16:34 -04:00
Nick
a3f12f43b3
Merge pull request #101 from cisagov/dependabot/github_actions/actions/setup-python-3
Bump actions/setup-python from 2 to 3
2022-04-01 12:16:00 -04:00
Nicholas McDonnell
e22c12cbd4
Use consistent quoting for software versions 2022-03-28 16:35:59 -04:00
Nicholas McDonnell
583992602c
Upgrade from Python 3.9 to 3.10 for the lint job in GHA 2022-03-28 16:29:30 -04:00
Nicholas McDonnell
511a37cf1e
Add Dependabot ignore directives
This adds commented out ignore directives for the following GitHub
Actions:

- action/cache
- action/checkout
- action/setup-python

These should be uncommented downstream to ensure that updates to these
dependencies are pushed from pull requests made in the skeleton.
2022-03-28 16:26:36 -04:00
Nicholas McDonnell
9a0380870c
Update pre-commit hooks
Update pre-commit hooks using `pre-commit autoupdate`. The `ansible-lint` hook
is intentionally held back due to issues with upgrading to v6.
2022-03-28 16:19:18 -04:00
cisagovbot
ff4c3a524c Normalize YAML files and update the software lists 2022-03-14 20:13:38 +00:00
justmurphy
3e8b964abd
Merge pull request #518 from cisagov/update-C
Update C products
2022-03-14 16:10:57 -04:00
justmurphy
b04121a067
Merge branch 'develop' into update-C 2022-03-14 16:09:09 -04:00
justmurphy
0dacbe9c78
Finish Cisco unaffected products 2022-03-14 16:05:10 -04:00
justmurphy
376a1b4424
Add Cisco products unaffected up to Wireless 2022-03-14 15:51:14 -04:00
dependabot[bot]
3406c2d420
Bump actions/checkout from 2 to 3
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-07 18:01:37 +00:00
justmurphy
00ff05db66
Add Cisco unaffected products up to UC 2022-03-04 14:50:48 -05:00
justmurphy
20c60670bd
Add Cisco products through R&S-SmB 2022-03-04 13:48:32 -05:00
justmurphy
debe95d0c2
Add Cisco products through NM&P 2022-03-04 08:13:14 -05:00
justmurphy
a1fbeba030
Add Cisco products unaffected Modeling Labs 2022-03-03 16:41:55 -05:00
justmurphy
85e6f74c24
Add Cisco unaffected products to NM&P 2022-03-03 16:21:46 -05:00
justmurphy
51026b7b52
Add Cisco affected/fixed products complete 2022-03-03 15:58:54 -05:00
justmurphy
36021ee467
Add Cisco products affected/fixed to Unified 2022-03-03 15:05:55 -05:00
justmurphy
536931bd52
Fix missing ' 2022-03-02 10:37:10 -05:00
justmurphy
02ba0d4565
Add Cisco affected/fixed products to Routing 2022-03-02 10:32:00 -05:00
justmurphy
6bb7d9e7ca
Remove obsolete Cisco entries 2022-03-02 08:56:44 -05:00
justmurphy
e29a2adbc9
Add CIS products 2022-03-02 08:47:09 -05:00
justmurphy
2be2880d1f
Add Chef products 2022-03-02 08:34:21 -05:00
justmurphy
51c8c41088
Add C products through Chatsworth 2022-03-02 08:27:15 -05:00
justmurphy
22a59c4c62
Fix trailing ws 2022-03-01 12:39:07 -05:00
justmurphy
fa385e78c8
Update Carbon Black entries 2022-03-01 12:36:41 -05:00
cisagovbot
ce449abb29 Normalize YAML files and update the software lists 2022-03-01 17:20:53 +00:00
justmurphy
a9e36a1354
Merge pull request #513 from cisagov/update_B
Update B products list
2022-03-01 11:18:21 -06:00
justmurphy
d7237b123a
Merge branch 'develop' into update_B 2022-03-01 10:52:16 -06:00
cisagovbot
b7d9f75a61 Normalize YAML files and update the software lists 2022-03-01 16:35:00 +00:00
Nick
daddbc208b
Merge pull request #515 from cisagov/improvement/fix-list-displays
Generate individual software list files instead of a single software list
2022-03-01 11:26:42 -05:00
dependabot[bot]
4ee1bfd96b
Bump actions/setup-python from 2 to 3
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2 to 3.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-02-28 18:02:16 +00:00
Nicholas McDonnell
84ca8ff082
Update the workflow for Markdown generation
Update the this workflow to reflect that now individual Markdown files
are generated instead of a single file. This includes renaming the
workflow file, adjusting some step names, and tweaking some other
aspects.
2022-02-28 11:19:56 -05:00
Nicholas McDonnell
acce4c2197
Merge branch 'develop' into improvement/fix-list-displays 2022-02-28 11:19:56 -05:00
Nicholas McDonnell
9f5c200b82
Remove the SOFTWARE-LIST.md file
This file is unnecessary because individual files will be generated
going forward.
2022-02-28 11:19:55 -05:00
Nicholas McDonnell
0d55714fd0
Add new CODEOWNERS directive
Add a directive for the automated update configuration that is stored
in the config/ directory.
2022-02-28 11:19:55 -05:00
Nicholas McDonnell
eef99899dc
Add shell script pre-commit hooks
Now that software updates are handled by a bash script that is stored
in the repository these pre-commit hooks should be re-added to the
pre-commit configuration. This also includes re-adding all of the
scaffolding that installs the shfmt tool in the build.yml workflow.
2022-02-28 11:19:55 -05:00