Renovate/configure #13496
Renovate/configure #13496
Conversation
Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator) from 1.4.0 to 1.10.0. - [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases) - [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md) - [Commits](slsa-framework/slsa-github-generator@v1.4.0...v1.10.0) --- updated-dependencies: - dependency-name: slsa-framework/slsa-github-generator dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Bumps [actions/configure-pages](https://github.com/actions/configure-pages) from 4 to 5. - [Release notes](https://github.com/actions/configure-pages/releases) - [Commits](actions/configure-pages@v4...v5) --- updated-dependencies: - dependency-name: actions/configure-pages dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
…ctions/configure-pages-5 build(deps): bump actions/configure-pages from 4 to 5
…lsa-framework/slsa-github-generator-1.10.0 build(deps): bump slsa-framework/slsa-github-generator from 1.4.0 to 1.10.0
|
This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation. |
| - name: make check | ||
| run: make check | ||
| - name: make distcheck | ||
| run: make distcheck |
There was a problem hiding this comment.
This job does not seem to add anything new.
| - name: Perform CodeQL Analysis | ||
| uses: github/codeql-action/analyze@v3 | ||
| with: | ||
| category: "/language:${{matrix.language}}" |
There was a problem hiding this comment.
We already have a codeql job. Why do we need another one?
| # separate terms of service, privacy policy, and support | ||
| # documentation. | ||
|
|
||
| # This workflow lets you generate SLSA provenance file for your project. |
There was a problem hiding this comment.
Sorry, but can you explain in plain English what kind of issues this job finds? I tried to read up but I don't understand how this helps as a CI job.
| @@ -0,0 +1,51 @@ | |||
| # Sample workflow for building and deploying a Jekyll site to GitHub Pages | |||
| name: Deploy Jekyll with GitHub Pages dependencies preinstalled | |||
| # separate terms of service, privacy policy, and support | ||
| # documentation. | ||
|
|
||
| name: MSBuild |
There was a problem hiding this comment.
Can you please explain how this job helps us?
| @@ -0,0 +1,43 @@ | |||
| # Simple workflow for deploying static content to GitHub Pages | |||
| name: Deploy static content to Pages | |||
| "extends": [ | ||
| "config:recommended" | ||
| ] | ||
| } |
No description provided.