diff --git a/.github/workflows/pull-request-scan.yml b/.github/workflows/pull-request-scan.yml deleted file mode 100644 index 07d90277a..000000000 --- a/.github/workflows/pull-request-scan.yml +++ /dev/null @@ -1,72 +0,0 @@ -# This workflow uses actions that are not certified by GitHub. -# They are provided by a third-party and are governed by -# separate terms of service, privacy policy, and support -# documentation. -# Frogbot Scan Pull Request does the following: -# Automatically scans new pull requests for security vulnerabilities. -# Uses JFrog Xray to scan the project. -# Read more about Frogbot here - https://github.com/jfrog/frogbot#frogbot - -# Some projects require creating a frogbot-config.yml file. Read more about it here - https://github.com/jfrog/frogbot/blob/master/docs/frogbot-config.md - -name: "Frogbot Scan Pull Request" -on: - pull_request_target: - types: [ opened, synchronize ] -permissions: - pull-requests: write - contents: read - security-events: write -jobs: - scan-pull-request: - runs-on: ubuntu-latest - # A pull request needs to be approved, before Frogbot scans it. Any GitHub user who is associated with the - # "frogbot" GitHub environment can approve the pull request to be scanned. - # Read more here (Install Frogbot Using GitHub Actions): https://github.com/jfrog/frogbot/blob/master/docs/install-github.md - environment: frogbot - steps: - - uses: actions/checkout@v2 - with: - ref: ${{ github.event.pull_request.head.sha }} - - - - name: Set up JDK 17 - uses: actions/setup-java@v4 - with: - java-version: '17' - distribution: 'adopt' - cache: maven - - # IMPORTANT: - # 1. See the following link for information about the tools that need to be installed for Frogbot to work - https://github.com/jfrog/frogbot/tree/master/docs/templates/github-actions/scan-and-fix - # 2. Some projects require creating a frogbot-config.yml file. Read more about it here - https://github.com/jfrog/frogbot/blob/master/docs/frogbot-config.md - - uses: jfrog/frogbot@v2 # v2.10.0 - env: - # [Mandatory if the two conditions below are met] - # 1. The project uses npm, yarn 2, NuGet or .NET to download its dependencies - # 2. The `installCommand` variable isn't set in your frogbot-config.yml file. - # - # The command that installs the project dependencies (e.g "npm i", "nuget restore" or "dotnet restore") - # JF_INSTALL_DEPS_CMD: "" - - # [Mandatory] - # JFrog platform URL - JF_URL: ${{ secrets.JF_URL }} - JF_USER: ${{ secrets.JF_USER }} - JF_PASSWORD: ${{ secrets.JF_PASSWORD }} - JF_GIT_TOKEN: ${{ secrets.GITHUB_TOKEN }} - JF_PROJECT: "fg" - JF_WATCH: "fredericg-watch" - JF_INCLUDE_ALL_VULNERABILITIES: "TRUE" - JFROG_CLI_LOG_LEVEL: “DEBUG” - # [Optional] - # If the machine that runs Frogbot has no access to the internat, set the name of a remote repository - # in Artifactory, which proxies https://releases.jfrog.io/artifactory - # The 'frogbot' executable and other tools it needs will be downloaded through this repository. - # JF_RELEASES_REPO: "" - - # [Optional] - # Frogbot will download the project dependencies, if they're not cached locally. To download the - # dependencies from a virtual repository in Artifactory, set the name of of the repository. There's no - # need to set this value, if it is set in the frogbot-config.yml file. - # JF_DEPS_REPO: "" \ No newline at end of file diff --git a/.github/workflows/xray-scan.yml b/.github/workflows/xray-scan.yml deleted file mode 100644 index ca98960d9..000000000 --- a/.github/workflows/xray-scan.yml +++ /dev/null @@ -1,15 +0,0 @@ -# https://github.com/marketplace/actions/xray-action - -- name: xray-action -uses: mikepenz/xray-action@v3 - - -- name: "Import results to Xray" - uses: mikepenz/xray-action@{latest-release} - with: - username: ${{ secrets.XRAY_CLIENT_ID }} - password: ${{ secrets.XRAY_CLIENT_SECRET }} - testFormat: "junit" - testPaths: "**/test/*.xml" - testExecKey: "TEST-1" - projectKey: "TEST" \ No newline at end of file