Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: product-os/flowzone
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v19.2.10
Choose a base ref
...
head repository: product-os/flowzone
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v19.2.11
Choose a head ref
  • 3 commits
  • 6 files changed
  • 2 contributors

Commits on Dec 17, 2024

  1. Use app installation tokens to upload octoscan SARIF

    The security-events permission is not granted by the restricted
    automatic token policy so in order for this to run at scale we
    need to use app installation tokens.
    
    The codeql-action/upload-sarif action using internal endpoints
    and does not work with app installation tokens so here we use
    the github-script action to upload the SARIF file to GitHub via
    the REST API.
    
    Change-type: patch
    Signed-off-by: Kyle Harding <kyle@balena.io>
    klutchell committed Dec 17, 2024

    Verified

    This commit was signed with the committer’s verified signature.
    klutchell Kyle Harding
    Copy the full SHA
    aa4a299 View commit details
  2. Merge pull request #1295 from product-os/kyle/security-events

    Use app installation tokens to upload octoscan SARIF
    flowzone-app[bot] authored Dec 17, 2024

    Verified

    This commit was created on GitHub.com and signed with GitHub’s verified signature.
    Copy the full SHA
    3ebbd0a View commit details
  3. v19.2.11

    flowzone-app[bot] authored Dec 17, 2024

    Verified

    This commit was created on GitHub.com and signed with GitHub’s verified signature.
    Copy the full SHA
    c933aff View commit details
Loading