Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add ref input #1

Draft
wants to merge 45 commits into
base: main
Choose a base branch
from
Draft

Add ref input #1

wants to merge 45 commits into from

Conversation

cw-alexcroteau
Copy link
Owner

Merge / deployment checklist

  • Confirm this change is backwards compatible with existing workflows.
  • Confirm the readme has been updated if necessary.
  • Confirm the changelog has been updated if necessary.

@cw-alexcroteau cw-alexcroteau marked this pull request as draft January 26, 2022 03:43
@cw-alexcroteau cw-alexcroteau mentioned this pull request Jan 26, 2022
Closed
3 tasks
aeisenberg and others added 25 commits January 28, 2022 15:42
@aeisenberg
Merge branch 'main' into dependabot/npm_and_yarn/runner/node-fetch-2.6.7
14b1fec
@aeisenberg
Merge pull request github#885 from github/dependabot/npm_and_yarn/run…
3b831aa 
…ner/node-fetch-2.6.7

Bump node-fetch from 2.6.1 to 2.6.7 in /runner
@dependabot
Bump node-fetch from 2.6.1 to 2.6.7
bc4366e 
Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.6.1 to 2.6.7.
- [Release notes](https://github.com/node-fetch/node-fetch/releases)
- [Commits](node-fetch/node-fetch@v2.6.1...v2.6.7)

---
updated-dependencies:
- dependency-name: node-fetch
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump trim-off-newlines from 1.0.2 to 1.0.3
253bc84 
Bumps [trim-off-newlines](https://github.com/stevemao/trim-off-newlines) from 1.0.2 to 1.0.3.
- [Release notes](https://github.com/stevemao/trim-off-newlines/releases)
- [Commits](stevemao/trim-off-newlines@v1.0.2...v1.0.3)

---
updated-dependencies:
- dependency-name: trim-off-newlines
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump sinon from 11.1.2 to 13.0.0
9673b56 
Bumps [sinon](https://github.com/sinonjs/sinon) from 11.1.2 to 13.0.0.
- [Release notes](https://github.com/sinonjs/sinon/releases)
- [Changelog](https://github.com/sinonjs/sinon/blob/master/docs/changelog.md)
- [Commits](sinonjs/sinon@v11.1.2...v13.0.0)

---
updated-dependencies:
- dependency-name: sinon
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Update checked-in dependencies
c337e5f
Update checked-in dependencies
8e07ec6
Update checked-in dependencies
6410c06
@henrymercer
Merge pull request github#894 from github/dependabot/npm_and_yarn/sin…
c260382 
…on-13.0.0

Bump sinon from 11.1.2 to 13.0.0
@henrymercer
Merge branch 'main' into dependabot/npm_and_yarn/node-fetch-2.6.7
1498bce
@henrymercer
Merge pull request github#892 from github/dependabot/npm_and_yarn/nod…
3a741b6 
…e-fetch-2.6.7

Bump node-fetch from 2.6.1 to 2.6.7
@henrymercer
Merge branch 'main' into dependabot/npm_and_yarn/trim-off-newlines-1.0.3
9664bae
1.0.31
bbb9c53
@henrymercer
Merge pull request github#893 from github/dependabot/npm_and_yarn/tri…
ea2ef85 
…m-off-newlines-1.0.3

Bump trim-off-newlines from 1.0.2 to 1.0.3
@aeisenberg
Merge pull request github#899 from github/update-v1.0.31-3a741b6c
1a927e9 
Merge main into v1
Update changelog and version after v1.0.31
30790fe
1.0.32
ce6e94b
@aeisenberg
Merge branch 'main' into mergeback/v1.0.31-to-main-1a927e93
6677734
Update checked-in dependencies
a602dbe
@dependabot
Bump long from 4.0.0 to 5.2.0
ba2b46d 
Bumps [long](https://github.com/dcodeIO/long.js) from 4.0.0 to 5.2.0.
- [Release notes](https://github.com/dcodeIO/long.js/releases)
- [Commits](dcodeIO/long.js@4.0.0...v5.2.0)

---
updated-dependencies:
- dependency-name: long
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Update checked-in dependencies
3929310
@aeisenberg
Merge pull request github#900 from github/mergeback/v1.0.31-to-main-1…
e9d5234 
…a927e93

Mergeback v1.0.31 refs/heads/v1 into main
@aeisenberg
Add a permissions block for generated workflows
e9aa2c6 
Ensure that all workflows are able to write security events.
@cw-alexcroteau
Adds ref and SHA as inputs, and sarif-id as output
980fd4e
@cw-alexcroteau @aeisenberg
Apply documentation suggestions from code review
0dd4dbf 
Co-authored-by: Andrew Eisenberg <[email protected]>
cw-alexcroteau and others added 10 commits January 31, 2022 20:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@cw-alexcroteau @aeisenberg @henrymercer