Commit f49c9c46: Initial commit

Initial commit

f49c9c46

Hari Sekhon

authored and

GitHub

committed Nov 19, 2024

main

Files

Details



	.github/workflows
	grype.yaml +
	kics.yaml +
	semgrep-cloud.yaml +
	semgrep.yaml +
	sonarcloud.yaml +
	trivy.yaml +
	validate.yaml +
	setup
	ci_bootstrap.sh +
	ci_git_set_dir_safe.sh +
	.editorconfig +
	.envrc +
	.envrc-python +
	.gitlab-ci.yml +
	.gitmodules +
	.mdl.rb +
	.mdlrc +
	.pre-commit-config.yaml +
	azure-pipelines.yml +
	bash-tools +
	bitbucket-pipelines.yml +
	customize.sh +
	LICENSE +
	Makefile +
	README.md +
	sonar-project.properties +

grype.yaml

+61

/.github/workflows/grype.yaml

View

# Author: Hari Sekhon

# Date: 2023-05-13 01:07:56 +0100 (Sat, 13 May 2023)

# vim:ts=2:sts=2:sw=2:et

# https://github.com/HariSekhon/Template-repo

# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback

# https://www.linkedin.com/in/HariSekhon

# ============================================================================ #

# G r y p e

# ============================================================================ #

---

on:

push:

branches:

- master

- main

paths-ignore:

- '**/*.md'

pull_request:

branches:

- master

- main

paths-ignore:

- '**/*.md'

workflow_dispatch:

inputs:

debug:

type: boolean

required: false

default: false

schedule:

- cron: '0 0 * * 1'

permissions:

actions: read

contents: read

security-events: write

concurrency:

group: ${{ github.ref }}-${{ github.workflow }}

cancel-in-progress: true

jobs:

Grype:

# github.event.repository context not available in scheduled workflows

#if: github.event.repository.fork == false

if: github.repository_owner == 'HariSekhon'

uses: HariSekhon/GitHub-Actions/.github/workflows/grype.yaml@master

with:

debug: ${{ github.event.inputs.debug }}

kics.yaml

+61

/.github/workflows/kics.yaml

View

# Author: Hari Sekhon

# Date: 2022-02-01 19:36:08 +0000 (Tue, 01 Feb 2022)

# vim:ts=2:sts=2:sw=2:et

# https://github.com/HariSekhon/Template-repo

# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback

# https://www.linkedin.com/in/HariSekhon

# ============================================================================ #

# K i c s

# ============================================================================ #

---

on:

push:

branches:

- master

- main

paths-ignore:

- '**/*.md'

pull_request:

branches:

- master

- main

paths-ignore:

- '**/*.md'

workflow_dispatch:

inputs:

debug:

type: boolean

required: false

default: false

schedule:

- cron: '0 0 * * 1'

permissions:

actions: read

contents: read

security-events: write

concurrency:

group: ${{ github.ref }}-${{ github.workflow }}

cancel-in-progress: true

jobs:

kics:

# github.event.repository context not available in scheduled workflows

#if: github.event.repository.fork == false

if: github.repository_owner == 'HariSekhon'

uses: HariSekhon/GitHub-Actions/.github/workflows/kics.yaml@master

with:

debug: ${{ github.event.inputs.debug }}

semgrep-cloud.yaml

+63

/.github/workflows/semgrep-cloud.yaml

View

# Author: Hari Sekhon

# Date: Tue Feb 4 09:53:28 2020 +0000

# vim:ts=2:sts=2:sw=2:et

# https://github.com/HariSekhon/Template-repo

# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback

# https://www.linkedin.com/in/HariSekhon

# ============================================================================ #

# S e m g r e p C l o u d W o r k f l o w

# ============================================================================ #

# Logs results to https://semgrep.dev/

---

on:

push:

branches:

- master

- main

paths-ignore:

- '**/*.md'

pull_request:

branches:

- master

- main

paths-ignore:

- '**/*.md'

workflow_dispatch:

inputs:

debug:

type: boolean

required: false

default: false

schedule:

- cron: '0 0 * * 1'

permissions:

contents: read

concurrency:

group: ${{ github.ref }}-${{ github.workflow }}

cancel-in-progress: true

jobs:

semgrep:

# github.event.repository context not available in scheduled workflows

#if: github.event.repository.fork == false

if: github.repository_owner == 'HariSekhon'

uses: HariSekhon/GitHub-Actions/.github/workflows/semgrep-cloud.yaml@master

secrets:

SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}

with:

debug: ${{ github.event.inputs.debug }}

semgrep.yaml

+65

/.github/workflows/semgrep.yaml

View

# Author: Hari Sekhon

# Date: Tue Feb 4 09:53:28 2020 +0000

# vim:ts=2:sts=2:sw=2:et

# https://github.com/HariSekhon/Template-repo

# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback

# https://www.linkedin.com/in/HariSekhon

# ============================================================================ #

# S e m g r e p G i t H u b W o r k f l o w

# ============================================================================ #

# Generates code scanning alerts in GitHub's Security tab -> Code scanning alerts

# https://semgrep.dev/docs/semgrep-ci/sample-ci-configs/#github-actions

---

on:

push:

branches:

- master

- main

paths-ignore:

- '**/*.md'

pull_request:

branches:

- master

- main

paths-ignore:

- '**/*.md'

workflow_dispatch:

inputs:

debug:

type: boolean

required: false

default: false

schedule:

- cron: '0 0 * * 1'

permissions:

actions: read

contents: read

security-events: write

concurrency:

group: ${{ github.ref }}-${{ github.workflow }}

cancel-in-progress: true

jobs:

semgrep:

# github.event.repository context not available in scheduled workflows

#if: github.event.repository.fork == false

if: github.repository_owner == 'HariSekhon'

uses: HariSekhon/GitHub-Actions/.github/workflows/semgrep.yaml@master

with:

debug: ${{ github.event.inputs.debug }}

sonarcloud.yaml

/.github/workflows/sonarcloud.yaml

View

trivy.yaml

/.github/workflows/trivy.yaml

View

validate.yaml

/.github/workflows/validate.yaml

View

ci_bootstrap.sh

/setup/ci_bootstrap.sh

View

ci_git_set_dir_safe.sh

/setup/ci_git_set_dir_safe.sh

View

.editorconfig

/.editorconfig

View

.envrc

/.envrc

View

.envrc-python

/.envrc-python

View

.gitlab-ci.yml

/.gitlab-ci.yml

View

.gitmodules

/.gitmodules

View

.mdl.rb

/.mdl.rb

View

.mdlrc

/.mdlrc

View

.pre-commit-config.yaml

/.pre-commit-config.yaml

View

azure-pipelines.yml

/azure-pipelines.yml

View

bash-tools

/bash-tools

View

bitbucket-pipelines.yml

/bitbucket-pipelines.yml

View

customize.sh

/customize.sh

View

LICENSE

/LICENSE

View

Makefile

/Makefile

View

README.md

/README.md

View

sonar-project.properties

/sonar-project.properties

View