Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement DevSecOps through GitHub's Dependabot and CodeQL #305

Open
wants to merge 84 commits into
base: master
Choose a base branch
from
Open

Implement DevSecOps through GitHub's Dependabot and CodeQL #305

wants to merge 84 commits into from

Conversation

aleks-ivanov
Copy link

  • add security and versioning dependency alerts through GitHub Dependabot (dependabot.yml)
  • add continuous security analysis using GitHub CodeQL (codeql-analysis.yml)
  • add documentation about functionality and setup for both features (CI-CD_DOCUMENTATION.md and CI-CD_DOCUMENTATION folder with images)

Resolves #289
Resolves #290

aleks-ivanov and others added 30 commits February 24, 2021 13:58
@aleks-ivanov
add Pipeline Foundation templates
02cb9dd
@aleks-ivanov
Add CodeQL and Dependabot
210d630
@aleks-ivanov
add the dotnet clean to fix the dotner restore cache bug
d892865
@aleks-ivanov
add the dotnet clean to fix the dotner restore cache bug
38d86af
@aleks-ivanov
add the dotnet clean to fix the dotner restore cache bug
0850dda
@aleks-ivanov
add security-and-qualtiy queries to CodeQL
deed7dd
@kulov
Merge pull request #1 from aleks-ivanov/feature/add-dependabot-codeql
a431f98 
Add Dependabot and CodeQL
@aleks-ivanov
add Pipeline Foundation templates
f1e271d
@aleks-ivanov
Add CodeQL and Dependabot
85156d7
@aleks-ivanov
add the dotnet clean to fix the dotner restore cache bug
d5ad9b7
@aleks-ivanov
add the dotnet clean to fix the dotner restore cache bug
70e8eb0
@aleks-ivanov
add the dotnet clean to fix the dotner restore cache bug
1c7bcbc
@aleks-ivanov
add security-and-qualtiy queries to CodeQL
5fe834f
@aleks-ivanov
Merge branch 'devsecops' of https://github.com/pipeline-foundation/Mo…
9bf7b00 
…dernWpf into devsecops
@aleks-ivanov
Merge branch 'master' into devsecops
8722756
@aleks-ivanov
Merge branch 'master' into devsecops
50af828
@aleks-ivanov
Merge branch 'master' into devsecops
5b7d2c5
@aleks-ivanov
Merge branch 'master' into devsecops
3b30152
@aleks-ivanov
Merge branch 'master' into devsecops
1e4c2ad
@aleks-ivanov
Merge branch 'master' into devsecops
1b45b16
@aleks-ivanov
Merge branch 'master' into devsecops
0e27700
@aleks-ivanov
Merge branch 'master' into devsecops
52bb30e
@aleks-ivanov
Merge branch 'master' into devsecops
fb5ebb4
@aleks-ivanov
Merge branch 'master' into devsecops
c347d73
@aleks-ivanov
Merge branch 'master' into devsecops
4ad853d
@aleks-ivanov
Merge branch 'master' into devsecops
b9200e3
@aleks-ivanov
Merge branch 'master' into devsecops
a2cd447
@aleks-ivanov
Merge branch 'master' into devsecops
9dcf66e
@aleks-ivanov
Merge branch 'master' into devsecops
516dfeb
@aleks-ivanov
Merge branch 'master' into devsecops
f8034ae
@aleks-ivanov
Merge branch 'master' into devsecops
7370b1e
@aleks-ivanov
Merge branch 'master' into devsecops
278c0ce
@aleks-ivanov
Merge branch 'master' into devsecops
cccacdc
@aleks-ivanov
Merge branch 'master' into devsecops
403928b
@aleks-ivanov
Merge branch 'master' into devsecops
eb46b60
@aleks-ivanov
Merge branch 'master' into devsecops
510741e
@aleks-ivanov
Merge branch 'master' into devsecops
87d8b10
@aleks-ivanov
Merge branch 'master' into devsecops
368f1f0
@aleks-ivanov
Merge branch 'master' into devsecops
4357326
@aleks-ivanov
Merge branch 'master' into devsecops
0f651ad
@aleks-ivanov
Merge branch 'master' into devsecops
3805cef
@aleks-ivanov
Merge branch 'master' into devsecops
347c4ac
@aleks-ivanov
Merge branch 'master' into devsecops
c0c20e1
@aleks-ivanov
Merge branch 'master' into devsecops
7c6eb80
@aleks-ivanov
Merge branch 'master' into devsecops
4be932c
@aleks-ivanov
Merge branch 'master' into devsecops
952e28b
@aleks-ivanov
Merge branch 'master' into devsecops
d31f36d
@aleks-ivanov
Merge branch 'master' into devsecops
05b3e88
@aleks-ivanov
Merge branch 'master' into devsecops
306b1d6
@aleks-ivanov
Merge branch 'master' into devsecops
c927cba
@aleks-ivanov
Merge branch 'master' into devsecops
b05e2c5
@aleks-ivanov
Merge branch 'master' into devsecops
62f6bd4
@aleks-ivanov
Merge branch 'master' into devsecops
a0c03e2
@aleks-ivanov
Merge branch 'master' into devsecops
04a1a45
@aleks-ivanov
Merge branch 'master' into devsecops
9e809eb
@aleks-ivanov
Merge branch 'master' into devsecops
2acf501
@aleks-ivanov
Merge branch 'master' into devsecops
eacb049
@aleks-ivanov
Merge branch 'master' into devsecops
0028f6c
@aleks-ivanov
Merge branch 'master' into devsecops
01aa789
@aleks-ivanov
Merge branch 'master' into devsecops
c43a80b
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Add continuous security analysis using GitHub CodeQL Add security and versioning dependency alerts
2 participants
@aleks-ivanov @kulov