From 60e1c25a1c8ab42ed9c6b8d75909cd0d254ce291 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Thu, 22 Aug 2024 16:15:35 +0800 Subject: [PATCH 01/45] Create code_scan.yml --- .github/workflows/code_scan.yml | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) create mode 100644 .github/workflows/code_scan.yml diff --git a/.github/workflows/code_scan.yml b/.github/workflows/code_scan.yml new file mode 100644 index 000000000..669daf9a0 --- /dev/null +++ b/.github/workflows/code_scan.yml @@ -0,0 +1,29 @@ +name: Alipay Cloud Devops Codescan +on: + pull_request_target: +jobs: + # # stc作业使用了ubuntu-latest作为运行环境,包含了一个步骤(steps)codeScan,该步骤使用了layotto/alipay-cloud-devops-codescan@main作为GitHub Action,并传入了一些参数(parent_uid、private_key、code_type) + stc: # 安全扫描 + runs-on: ubuntu-latest + steps: + - name: codeScan + uses: huqiuxiang/alipay-cloud-devops-codescan@main + with: + parent_uid: ${{ secrets.ALI_PID }} + private_key: ${{ secrets.ALI_PK }} + scan_type: stc + # 按需配置,不配置为空即可注意‘’中需要有空格,或直接去点tips + tips: '可以加入钉钉群:xxxx 来申请查看权限' + # sca作业也使用了ubuntu-latest作为运行环境。sca作业也包含了一个步骤codeScan,使用了相同的GitHub Action,并传入了相同的参数。 + # 此YAML文件定义了两个作业,分别用于进行安全扫描和开源合规的代码扫描,使用了相同的GitHub Action,并传入了不同的参数。 + sca: # 开源合规 + runs-on: ubuntu-latest + steps: + - name: codeScan + uses: huqiuxiang/alipay-cloud-devops-codescan@main + with: + parent_uid: ${{ secrets.ALI_PID }} + private_key: ${{ secrets.ALI_PK }} + scan_type: sca + # 按需配置,不配置为空即可注意‘’中需要有空格,或直接去点tips + tips: '可以加入钉钉群:xxxx 来申请查看权限' From a030b6485625b6d354b06883217d63318a353768 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Thu, 22 Aug 2024 16:16:49 +0800 Subject: [PATCH 02/45] Delete .github/workflows/code_scan.yml --- .github/workflows/code_scan.yml | 29 ----------------------------- 1 file changed, 29 deletions(-) delete mode 100644 .github/workflows/code_scan.yml diff --git a/.github/workflows/code_scan.yml b/.github/workflows/code_scan.yml deleted file mode 100644 index 669daf9a0..000000000 --- a/.github/workflows/code_scan.yml +++ /dev/null @@ -1,29 +0,0 @@ -name: Alipay Cloud Devops Codescan -on: - pull_request_target: -jobs: - # # stc作业使用了ubuntu-latest作为运行环境,包含了一个步骤(steps)codeScan,该步骤使用了layotto/alipay-cloud-devops-codescan@main作为GitHub Action,并传入了一些参数(parent_uid、private_key、code_type) - stc: # 安全扫描 - runs-on: ubuntu-latest - steps: - - name: codeScan - uses: huqiuxiang/alipay-cloud-devops-codescan@main - with: - parent_uid: ${{ secrets.ALI_PID }} - private_key: ${{ secrets.ALI_PK }} - scan_type: stc - # 按需配置,不配置为空即可注意‘’中需要有空格,或直接去点tips - tips: '可以加入钉钉群:xxxx 来申请查看权限' - # sca作业也使用了ubuntu-latest作为运行环境。sca作业也包含了一个步骤codeScan,使用了相同的GitHub Action,并传入了相同的参数。 - # 此YAML文件定义了两个作业,分别用于进行安全扫描和开源合规的代码扫描,使用了相同的GitHub Action,并传入了不同的参数。 - sca: # 开源合规 - runs-on: ubuntu-latest - steps: - - name: codeScan - uses: huqiuxiang/alipay-cloud-devops-codescan@main - with: - parent_uid: ${{ secrets.ALI_PID }} - private_key: ${{ secrets.ALI_PK }} - scan_type: sca - # 按需配置,不配置为空即可注意‘’中需要有空格,或直接去点tips - tips: '可以加入钉钉群:xxxx 来申请查看权限' From 05e363010ee64fa4d609a268d051273aace37f67 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Fri, 23 Aug 2024 15:19:36 +0800 Subject: [PATCH 03/45] Create fossa_scan.yml --- .github/workflows/fossa_scan.yml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 .github/workflows/fossa_scan.yml diff --git a/.github/workflows/fossa_scan.yml b/.github/workflows/fossa_scan.yml new file mode 100644 index 000000000..1b1e48ca5 --- /dev/null +++ b/.github/workflows/fossa_scan.yml @@ -0,0 +1,22 @@ +name: FOSSA Scan + +on: + push: + branches: [ master ] + pull_request: + branches: [ master ] + +jobs: + fossa: + runs-on: ubuntu-latest + + steps: + - name: Checkout Code + uses: actions/checkout@v3 + + - name: Run FOSSA Scan + uses: fossa-contrib/fossa-action@v1 + with: + api_key: ${{ secrets.FOSSA_API_KEY }} + # 可选:指定FOSSA命令行参数,例如目录、排除等 + # args: '--exclude=**/node_modules,**/vendor' From bc4322a7b204caa13a2346e2d65f8ae729b1fe63 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Fri, 23 Aug 2024 15:29:30 +0800 Subject: [PATCH 04/45] Delete .github/workflows/maven.yml --- .github/workflows/maven.yml | 32 -------------------------------- 1 file changed, 32 deletions(-) delete mode 100644 .github/workflows/maven.yml diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml deleted file mode 100644 index 53b1d6e2f..000000000 --- a/.github/workflows/maven.yml +++ /dev/null @@ -1,32 +0,0 @@ -# This workflow will build a Java project with Maven -# For more information see: https://help.github.com/actions/language-and-framework-guides/building-and-testing-java-with-maven - -name: build -on: - push: - branches: [ master ] - pull_request: - branches: [ master ] - # enable manually running the workflow - workflow_dispatch: - -jobs: - build: - - runs-on: ubuntu-latest - - steps: - - uses: actions/checkout@v2 - - name: Set up JDK 1.8 - uses: actions/setup-java@v3 - with: - java-version: '8' - distribution: 'temurin' - cache: maven - - name: Build with Maven - run: ./mvnw clean install -Pci-install -B -U -e && bash ./tools/check_format.sh - - name: Test with Maven - run: ./mvnw package -Pci-test - - name: Codecov - uses: codecov/codecov-action@v1 - From 4d0cde01e3fa73ea5d51351142a6fb9e5dce129d Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Fri, 23 Aug 2024 15:29:41 +0800 Subject: [PATCH 05/45] Delete .github/workflows/release.yml --- .github/workflows/release.yml | 45 ----------------------------------- 1 file changed, 45 deletions(-) delete mode 100644 .github/workflows/release.yml diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml deleted file mode 100644 index 78ce020f0..000000000 --- a/.github/workflows/release.yml +++ /dev/null @@ -1,45 +0,0 @@ -# This workflow will build a Java project with Maven, and cache/restore any dependencies to improve the workflow execution time -# For more information see: https://help.github.com/actions/language-and-framework-guides/building-and-testing-java-with-maven - -name: Release - -on: - workflow_dispatch: - - -jobs: - build: - runs-on: ubuntu-latest - - steps: - - uses: actions/checkout@v3 - - name: Set up JDK 8 - uses: actions/setup-java@v3 - with: - java-version: '8' - distribution: 'temurin' - cache: maven - - name: Build with Maven - run: mvn clean install -Pci-install -B -U -e && bash ./tools/check_format.sh - release: - needs: build - runs-on: ubuntu-latest - steps: - - uses: actions/checkout@v3 - - name: Set up JDK 8 - uses: actions/setup-java@v3 - with: - java-version: '8' - distribution: 'temurin' - cache: maven - server-id: ossrh - server-username: MAVEN_USERNAME - server-password: MAVEN_PASSWORD - gpg-private-key: ${{ secrets.MAVEN_GPG_PRIVATE_KEY }} # Value of the GPG private key to import - gpg-passphrase: MAVEN_GPG_PASSPHRASE # env variable for GPG private key passphrase - - name: Build with Maven - run: mvn --batch-mode deploy -DskipTests -Prelease - env: - MAVEN_USERNAME: ${{ secrets.MAVEN_USERNAME }} - MAVEN_PASSWORD: ${{ secrets.MAVEN_PASSWORD }} - MAVEN_GPG_PASSPHRASE: ${{ secrets.MAVEN_GPG_PASSPHRASE }} From e2ebb52ce1297efc83845034797295acc06f1050 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Fri, 23 Aug 2024 15:29:55 +0800 Subject: [PATCH 06/45] Delete .github/workflows/cloud_code_scan.yml --- .github/workflows/cloud_code_scan.yml | 22 ---------------------- 1 file changed, 22 deletions(-) delete mode 100644 .github/workflows/cloud_code_scan.yml diff --git a/.github/workflows/cloud_code_scan.yml b/.github/workflows/cloud_code_scan.yml deleted file mode 100644 index f735fd3d9..000000000 --- a/.github/workflows/cloud_code_scan.yml +++ /dev/null @@ -1,22 +0,0 @@ -name: Alipay Cloud Devops Codescan -on: - pull_request_target: -jobs: - stc: #安全扫描 - runs-on: ubuntu-latest - steps: - - name: codeScan - uses: layotto/alipay-cloud-devops-codescan@main - with: - parent_uid: ${{ secrets.ALI_PID }} - private_key: ${{ secrets.ALI_PK }} - scan_type: stc - sca: # 开源合规 - runs-on: ubuntu-latest - steps: - - name: codeScan - uses: layotto/alipay-cloud-devops-codescan@main - with: - parent_uid: ${{ secrets.ALI_PID }} - private_key: ${{ secrets.ALI_PK }} - scan_type: sca From f5ec55ee6c738f6961cc7c7983e5a2b5acdccb0d Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Fri, 23 Aug 2024 15:32:49 +0800 Subject: [PATCH 07/45] Create test_hqx --- test_hqx | 1 + 1 file changed, 1 insertion(+) create mode 100644 test_hqx diff --git a/test_hqx b/test_hqx new file mode 100644 index 000000000..9daeafb98 --- /dev/null +++ b/test_hqx @@ -0,0 +1 @@ +test From 3a67d94f212446c244b1c99c0389dd2c0a1fa686 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Fri, 23 Aug 2024 15:38:47 +0800 Subject: [PATCH 08/45] Update fossa_scan.yml --- .github/workflows/fossa_scan.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/fossa_scan.yml b/.github/workflows/fossa_scan.yml index 1b1e48ca5..07ff58e84 100644 --- a/.github/workflows/fossa_scan.yml +++ b/.github/workflows/fossa_scan.yml @@ -17,6 +17,6 @@ jobs: - name: Run FOSSA Scan uses: fossa-contrib/fossa-action@v1 with: - api_key: ${{ secrets.FOSSA_API_KEY }} + fossa-api-key: ${{ secrets.FOSSA_API_KEY }} # 可选:指定FOSSA命令行参数,例如目录、排除等 # args: '--exclude=**/node_modules,**/vendor' From 56dcbf55a1f734b8bf284dcebb72a010e1448f06 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Tue, 27 Aug 2024 09:57:56 +0800 Subject: [PATCH 09/45] Create cloud_code_scan.yml --- .github/workflows/cloud_code_scan.yml | 33 +++++++++++++++++++++++++++ 1 file changed, 33 insertions(+) create mode 100644 .github/workflows/cloud_code_scan.yml diff --git a/.github/workflows/cloud_code_scan.yml b/.github/workflows/cloud_code_scan.yml new file mode 100644 index 000000000..334ae676b --- /dev/null +++ b/.github/workflows/cloud_code_scan.yml @@ -0,0 +1,33 @@ +name: Alipay Cloud Devops Codescan +on: + push: + branches: [ main ] + pull_request: + branches: [ main ] + #pull_request_target: +jobs: + # # stc作业使用了ubuntu-latest作为运行环境,包含了一个步骤(steps)codeScan,该步骤使用了layotto/alipay-cloud-devops-codescan@main作为GitHub Action,并传入了一些参数(parent_uid、private_key、code_type) + stc: # 安全扫描 + runs-on: ubuntu-latest + steps: + - name: codeScan + uses: huqiuxiang/alipay-cloud-devops-codescan@main + with: + parent_uid: ${{ secrets.ALI_PID }} + private_key: ${{ secrets.ALI_PK }} + scan_type: stc + # 按需配置,不配置为空即可注意‘’中需要有空格,或直接去点tips + tips: '可以加入钉钉群:xxxx 来申请查看权限' + # sca作业也使用了ubuntu-latest作为运行环境。sca作业也包含了一个步骤codeScan,使用了相同的GitHub Action,并传入了相同的参数。 + # 此YAML文件定义了两个作业,分别用于进行安全扫描和开源合规的代码扫描,使用了相同的GitHub Action,并传入了不同的参数。 + sca: # 开源合规 + runs-on: ubuntu-latest + steps: + - name: codeScan + uses: huqiuxiang/alipay-cloud-devops-codescan@main + with: + parent_uid: ${{ secrets.ALI_PID }} + private_key: ${{ secrets.ALI_PK }} + scan_type: sca + # 按需配置,不配置为空即可注意‘’中需要有空格,或直接去点tips + tips: '可以加入钉钉群:xxxx 来申请查看权限' From 98e5292c73879906a5a48336acd43d55a3626d70 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Tue, 27 Aug 2024 10:01:47 +0800 Subject: [PATCH 10/45] Update pom.xml --- pom.xml | 1 + 1 file changed, 1 insertion(+) diff --git a/pom.xml b/pom.xml index 2ea91a865..a35eee3fd 100644 --- a/pom.xml +++ b/pom.xml @@ -18,6 +18,7 @@ + all bom From 644e31171f3a966ac95b077b5441f1c210bb0957 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Tue, 27 Aug 2024 10:03:42 +0800 Subject: [PATCH 11/45] Update cloud_code_scan.yml --- .github/workflows/cloud_code_scan.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/cloud_code_scan.yml b/.github/workflows/cloud_code_scan.yml index 334ae676b..285348e07 100644 --- a/.github/workflows/cloud_code_scan.yml +++ b/.github/workflows/cloud_code_scan.yml @@ -1,9 +1,9 @@ name: Alipay Cloud Devops Codescan on: push: - branches: [ main ] + branches: [ master ] pull_request: - branches: [ main ] + branches: [ master ] #pull_request_target: jobs: # # stc作业使用了ubuntu-latest作为运行环境,包含了一个步骤(steps)codeScan,该步骤使用了layotto/alipay-cloud-devops-codescan@main作为GitHub Action,并传入了一些参数(parent_uid、private_key、code_type) From 66fea25e802a18d0a1712c472c96f69f1d1c26fb Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Tue, 27 Aug 2024 10:19:51 +0800 Subject: [PATCH 12/45] Update pom.xml --- pom.xml | 1 - 1 file changed, 1 deletion(-) diff --git a/pom.xml b/pom.xml index a35eee3fd..2ea91a865 100644 --- a/pom.xml +++ b/pom.xml @@ -18,7 +18,6 @@ - all bom From 5fa0918bd4959ee01e2ac44142000c91c0deaaf3 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Tue, 27 Aug 2024 15:47:52 +0800 Subject: [PATCH 13/45] Create soos_scan.yml --- .github/workflows/soos_scan.yml | 31 +++++++++++++++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 .github/workflows/soos_scan.yml diff --git a/.github/workflows/soos_scan.yml b/.github/workflows/soos_scan.yml new file mode 100644 index 000000000..d13b8af67 --- /dev/null +++ b/.github/workflows/soos_scan.yml @@ -0,0 +1,31 @@ +# This is a basic workflow to help you get started with Actions +name: SOOS SCA SARIF Example CI + +# Controls when the workflow will run +on: + # Triggers the workflow on push or pull request events but only for the main branch + push: + branches: [ master ] + pull_request: + branches: [ master ] + +# A workflow run is made up of one or more jobs that can run sequentially or in parallel +jobs: + # This workflow contains a single job called "build" + build: + # The type of runner that the job will run on + runs-on: ubuntu-latest + + # Steps represent a sequence of tasks that will be executed as part of the job + steps: + # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it + - uses: actions/checkout@v3 + + # Runs a single command using the runners shell + - name: SOOS SCA Analysis + uses: soos-io/soos-sca-github-action@v2 + with: + project_name: "/" # Also you can use the var ${{ github.repository }} + output_format: "sarif" + client_id: ${{ secrets.SOOS_CLIENT_ID }} + api_key: ${{ secrets.SOOS_API_KEY }} From ddb565685c6dcf82af2844858fc4baec83a2c85b Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Sat, 14 Sep 2024 09:47:14 +0800 Subject: [PATCH 14/45] Create sonarqube_scan.yml --- .github/workflows/sonarqube_scan.yml | 1 + 1 file changed, 1 insertion(+) create mode 100644 .github/workflows/sonarqube_scan.yml diff --git a/.github/workflows/sonarqube_scan.yml b/.github/workflows/sonarqube_scan.yml new file mode 100644 index 000000000..8b1378917 --- /dev/null +++ b/.github/workflows/sonarqube_scan.yml @@ -0,0 +1 @@ + From d80768f28d55fb1d1357cc5a0f7acf940aed876a Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Sat, 14 Sep 2024 09:49:43 +0800 Subject: [PATCH 15/45] Update sonarqube_scan.yml --- .github/workflows/sonarqube_scan.yml | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) diff --git a/.github/workflows/sonarqube_scan.yml b/.github/workflows/sonarqube_scan.yml index 8b1378917..4c16e3c61 100644 --- a/.github/workflows/sonarqube_scan.yml +++ b/.github/workflows/sonarqube_scan.yml @@ -1 +1,20 @@ +name: sonarqube scan +on: + push: + branches: [ master ] +jobs: + build: + runs-on: ubuntu-latest + + steps: + - uses: actions/checkout@v2 + - name: Set up JDK 17 + uses: actions/setup-java@v2 + with: + java-version: '17' + distribution: 'adopt' + + # 如果是Maven + - name: Build and analyze with Maven + run: mvn clean verify sonar:sonar -Dsonar.projectKey=${{ github.event.repository.name }} -Dsonar.host.url=${{ secrets.SONARQUBE_HOST }} -Dsonar.login=${{ secrets.SONARQUBE_TOKEN }} From 80fcd0e113b0abc00023f8aa428868bb687321ce Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Sat, 14 Sep 2024 09:51:41 +0800 Subject: [PATCH 16/45] Update sonarqube_scan.yml --- .github/workflows/sonarqube_scan.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sonarqube_scan.yml b/.github/workflows/sonarqube_scan.yml index 4c16e3c61..d566103cf 100644 --- a/.github/workflows/sonarqube_scan.yml +++ b/.github/workflows/sonarqube_scan.yml @@ -9,10 +9,10 @@ jobs: steps: - uses: actions/checkout@v2 - - name: Set up JDK 17 + - name: Set up JDK 8 uses: actions/setup-java@v2 with: - java-version: '17' + java-version: '8' distribution: 'adopt' # 如果是Maven From 01ec5b540830b017a789509eb67c4fc3a1dd8b79 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Sat, 14 Sep 2024 10:08:33 +0800 Subject: [PATCH 17/45] Update sonarqube_scan.yml --- .github/workflows/sonarqube_scan.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/sonarqube_scan.yml b/.github/workflows/sonarqube_scan.yml index d566103cf..8d7e7e7ca 100644 --- a/.github/workflows/sonarqube_scan.yml +++ b/.github/workflows/sonarqube_scan.yml @@ -9,12 +9,12 @@ jobs: steps: - uses: actions/checkout@v2 - - name: Set up JDK 8 + - name: Set up JDK 17 uses: actions/setup-java@v2 with: - java-version: '8' + java-version: '17' distribution: 'adopt' # 如果是Maven - name: Build and analyze with Maven - run: mvn clean verify sonar:sonar -Dsonar.projectKey=${{ github.event.repository.name }} -Dsonar.host.url=${{ secrets.SONARQUBE_HOST }} -Dsonar.login=${{ secrets.SONARQUBE_TOKEN }} + run: mvn clean -Dmaven.test.skip=true verify sonar:sonar -Dsonar.projectKey=${{ github.event.repository.name }} -Dsonar.host.url=${{ secrets.SONARQUBE_HOST }} -Dsonar.login=${{ secrets.SONARQUBE_TOKEN }} From a22b07c05563ee0d54a5b2bedada60748067047c Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Sat, 14 Sep 2024 10:12:57 +0800 Subject: [PATCH 18/45] Update sonarqube_scan.yml --- .github/workflows/sonarqube_scan.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sonarqube_scan.yml b/.github/workflows/sonarqube_scan.yml index 8d7e7e7ca..9056ab51e 100644 --- a/.github/workflows/sonarqube_scan.yml +++ b/.github/workflows/sonarqube_scan.yml @@ -9,10 +9,10 @@ jobs: steps: - uses: actions/checkout@v2 - - name: Set up JDK 17 + - name: Set up JDK 8 uses: actions/setup-java@v2 with: - java-version: '17' + java-version: '8' distribution: 'adopt' # 如果是Maven From 7b913fc66123580f448a21642145f18dc49160a9 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Sat, 14 Sep 2024 10:24:07 +0800 Subject: [PATCH 19/45] Update sonarqube_scan.yml --- .github/workflows/sonarqube_scan.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sonarqube_scan.yml b/.github/workflows/sonarqube_scan.yml index 9056ab51e..9584b86b7 100644 --- a/.github/workflows/sonarqube_scan.yml +++ b/.github/workflows/sonarqube_scan.yml @@ -17,4 +17,4 @@ jobs: # 如果是Maven - name: Build and analyze with Maven - run: mvn clean -Dmaven.test.skip=true verify sonar:sonar -Dsonar.projectKey=${{ github.event.repository.name }} -Dsonar.host.url=${{ secrets.SONARQUBE_HOST }} -Dsonar.login=${{ secrets.SONARQUBE_TOKEN }} + run: mvn clean verify sonar:sonar -Dmaven.test.skip=true -Dsonar.projectKey=${{ github.event.repository.name }} -Dsonar.host.url=${{ secrets.SONARQUBE_HOST }} -Dsonar.login=${{ secrets.SONARQUBE_TOKEN }} -Dsonar.maven.pluginVersion=3.9.1.2184 From bd64164d36d058da1c8d1f7ec96d5ff46706cd8f Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Sat, 14 Sep 2024 10:28:55 +0800 Subject: [PATCH 20/45] Update sonarqube_scan.yml --- .github/workflows/sonarqube_scan.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/sonarqube_scan.yml b/.github/workflows/sonarqube_scan.yml index 9584b86b7..b8e51d87d 100644 --- a/.github/workflows/sonarqube_scan.yml +++ b/.github/workflows/sonarqube_scan.yml @@ -9,12 +9,12 @@ jobs: steps: - uses: actions/checkout@v2 - - name: Set up JDK 8 + - name: Set up JDK 11 uses: actions/setup-java@v2 with: - java-version: '8' + java-version: '11' distribution: 'adopt' # 如果是Maven - name: Build and analyze with Maven - run: mvn clean verify sonar:sonar -Dmaven.test.skip=true -Dsonar.projectKey=${{ github.event.repository.name }} -Dsonar.host.url=${{ secrets.SONARQUBE_HOST }} -Dsonar.login=${{ secrets.SONARQUBE_TOKEN }} -Dsonar.maven.pluginVersion=3.9.1.2184 + run: mvn clean verify sonar:sonar -Dmaven.test.skip=true -Dsonar.projectKey=${{ github.event.repository.name }} -Dsonar.host.url=${{ secrets.SONARQUBE_HOST }} -Dsonar.login=${{ secrets.SONARQUBE_TOKEN }} From c7448fddba4dd390c944ffcc706b8bc9879b0c7f Mon Sep 17 00:00:00 2001 From: huqiuxiang Date: Sat, 14 Sep 2024 10:35:43 +0800 Subject: [PATCH 21/45] fix java version11 --- pom.xml | 6 ++++++ registry/registry-local/pom.xml | 4 ++++ 2 files changed, 10 insertions(+) diff --git a/pom.xml b/pom.xml index 2ea91a865..804ffc023 100644 --- a/pom.xml +++ b/pom.xml @@ -51,6 +51,12 @@ pom import + + + javax.xml.bind + jaxb-api + 2.3.1 + diff --git a/registry/registry-local/pom.xml b/registry/registry-local/pom.xml index c777cb2e4..573326001 100644 --- a/registry/registry-local/pom.xml +++ b/registry/registry-local/pom.xml @@ -13,6 +13,10 @@ sofa-rpc-registry-local + + javax.xml.bind + jaxb-api + com.alipay.sofa sofa-rpc-log From c30f05ea9748ea402afc2a4b2ef6db9c90c30c1e Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Sat, 14 Sep 2024 10:38:45 +0800 Subject: [PATCH 22/45] Update sonarqube_scan.yml --- .github/workflows/sonarqube_scan.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sonarqube_scan.yml b/.github/workflows/sonarqube_scan.yml index b8e51d87d..9ac7f8388 100644 --- a/.github/workflows/sonarqube_scan.yml +++ b/.github/workflows/sonarqube_scan.yml @@ -9,10 +9,10 @@ jobs: steps: - uses: actions/checkout@v2 - - name: Set up JDK 11 + - name: Set up JDK 17 uses: actions/setup-java@v2 with: - java-version: '11' + java-version: '17' distribution: 'adopt' # 如果是Maven From 9749ea5204ffd03c2789b70feaa8f29460bdefe3 Mon Sep 17 00:00:00 2001 From: huqiuxiang Date: Sat, 14 Sep 2024 10:42:32 +0800 Subject: [PATCH 23/45] fix java version11 --- pom.xml | 7 +++++++ remoting/remoting-triple/pom.xml | 5 +++++ 2 files changed, 12 insertions(+) diff --git a/pom.xml b/pom.xml index 804ffc023..b251c248d 100644 --- a/pom.xml +++ b/pom.xml @@ -57,6 +57,13 @@ jaxb-api 2.3.1 + + + jakarta.annotation + jakarta.annotation-api + 2.0.0 + provided + diff --git a/remoting/remoting-triple/pom.xml b/remoting/remoting-triple/pom.xml index 6c9458d33..345392baf 100644 --- a/remoting/remoting-triple/pom.xml +++ b/remoting/remoting-triple/pom.xml @@ -16,6 +16,11 @@ com.alipay.sofa sofa-rpc-log + + javax.annotation + javax.annotation-api + 1.3.2 + com.alipay.sofa sofa-rpc-api From 2dfb375e86b144fa03d9b8087866ae40ac974728 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 17:28:05 +0800 Subject: [PATCH 24/45] Update pom.xml --- pom.xml | 1 + 1 file changed, 1 insertion(+) diff --git a/pom.xml b/pom.xml index b251c248d..89f829e67 100644 --- a/pom.xml +++ b/pom.xml @@ -15,6 +15,7 @@ The Ant Financial http://www.antfin.com/ + From 6b6e088a3559e316247ae6c43b68f67242ce2f7a Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 18:37:58 +0800 Subject: [PATCH 25/45] Update cloud_code_scan.yml --- .github/workflows/cloud_code_scan.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/cloud_code_scan.yml b/.github/workflows/cloud_code_scan.yml index 285348e07..e4325a638 100644 --- a/.github/workflows/cloud_code_scan.yml +++ b/.github/workflows/cloud_code_scan.yml @@ -11,7 +11,7 @@ jobs: runs-on: ubuntu-latest steps: - name: codeScan - uses: huqiuxiang/alipay-cloud-devops-codescan@main + uses: huqiuxiang/alipay-cloud-devops-codescan@new_stc with: parent_uid: ${{ secrets.ALI_PID }} private_key: ${{ secrets.ALI_PK }} From 4b21d83e29e5054d1c7897237bda17e1af0b475f Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 18:39:13 +0800 Subject: [PATCH 26/45] Update pom.xml --- pom.xml | 1 - 1 file changed, 1 deletion(-) diff --git a/pom.xml b/pom.xml index 89f829e67..179c4bfa0 100644 --- a/pom.xml +++ b/pom.xml @@ -16,7 +16,6 @@ http://www.antfin.com/ - all From 5feab42e918ce37d7688304e565dbf38bdbc2b30 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 18:44:40 +0800 Subject: [PATCH 27/45] Update pom.xml --- pom.xml | 1 + 1 file changed, 1 insertion(+) diff --git a/pom.xml b/pom.xml index 179c4bfa0..d91fa18aa 100644 --- a/pom.xml +++ b/pom.xml @@ -15,6 +15,7 @@ The Ant Financial http://www.antfin.com/ + From 383fdb601429bb84049840d693a769e2b294542c Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 18:49:19 +0800 Subject: [PATCH 28/45] Update pom.xml --- pom.xml | 1 - 1 file changed, 1 deletion(-) diff --git a/pom.xml b/pom.xml index d91fa18aa..b251c248d 100644 --- a/pom.xml +++ b/pom.xml @@ -16,7 +16,6 @@ http://www.antfin.com/ - all From c5b1ac15030ff2fa94c2cbc7776ea973630ee95d Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 18:55:36 +0800 Subject: [PATCH 29/45] Update pom.xml --- pom.xml | 1 + 1 file changed, 1 insertion(+) diff --git a/pom.xml b/pom.xml index b251c248d..d91fa18aa 100644 --- a/pom.xml +++ b/pom.xml @@ -16,6 +16,7 @@ http://www.antfin.com/ + all From e36c82af173a1204822aeee8be0af6685def048b Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 19:01:00 +0800 Subject: [PATCH 30/45] Update pom.xml --- pom.xml | 1 - 1 file changed, 1 deletion(-) diff --git a/pom.xml b/pom.xml index d91fa18aa..179c4bfa0 100644 --- a/pom.xml +++ b/pom.xml @@ -15,7 +15,6 @@ The Ant Financial http://www.antfin.com/ - From a56922f89e412adb7e3d22984fd561e11a9afcd1 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 19:04:00 +0800 Subject: [PATCH 31/45] Update pom.xml --- pom.xml | 1 + 1 file changed, 1 insertion(+) diff --git a/pom.xml b/pom.xml index 179c4bfa0..d91fa18aa 100644 --- a/pom.xml +++ b/pom.xml @@ -15,6 +15,7 @@ The Ant Financial http://www.antfin.com/ + From 56a76854346ca605d036751b1aa02115d870706d Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 19:08:12 +0800 Subject: [PATCH 32/45] Update pom.xml --- pom.xml | 1 - 1 file changed, 1 deletion(-) diff --git a/pom.xml b/pom.xml index d91fa18aa..179c4bfa0 100644 --- a/pom.xml +++ b/pom.xml @@ -15,7 +15,6 @@ The Ant Financial http://www.antfin.com/ - From 0c68d84a1f2770694b891c721111f371470ac53f Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 19:09:15 +0800 Subject: [PATCH 33/45] Update pom.xml --- pom.xml | 1 + 1 file changed, 1 insertion(+) diff --git a/pom.xml b/pom.xml index 179c4bfa0..d91fa18aa 100644 --- a/pom.xml +++ b/pom.xml @@ -15,6 +15,7 @@ The Ant Financial http://www.antfin.com/ + From cf9b7db3b23e0b9153f9fc7fa22e0ab0326bbe5d Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 19:10:48 +0800 Subject: [PATCH 34/45] Update pom.xml --- pom.xml | 1 - 1 file changed, 1 deletion(-) diff --git a/pom.xml b/pom.xml index d91fa18aa..b251c248d 100644 --- a/pom.xml +++ b/pom.xml @@ -16,7 +16,6 @@ http://www.antfin.com/ - all From 6183eab4186d73238de2718513437aadff02d65c Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 19:12:38 +0800 Subject: [PATCH 35/45] Update pom.xml --- pom.xml | 1 + 1 file changed, 1 insertion(+) diff --git a/pom.xml b/pom.xml index b251c248d..d91fa18aa 100644 --- a/pom.xml +++ b/pom.xml @@ -16,6 +16,7 @@ http://www.antfin.com/ + all From e625a230087ec56bf34edc6227526da72a15ff8c Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 19:23:33 +0800 Subject: [PATCH 36/45] Update cloud_code_scan.yml --- .github/workflows/cloud_code_scan.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/cloud_code_scan.yml b/.github/workflows/cloud_code_scan.yml index e4325a638..13b5c76d4 100644 --- a/.github/workflows/cloud_code_scan.yml +++ b/.github/workflows/cloud_code_scan.yml @@ -24,7 +24,7 @@ jobs: runs-on: ubuntu-latest steps: - name: codeScan - uses: huqiuxiang/alipay-cloud-devops-codescan@main + uses: huqiuxiang/alipay-cloud-devops-codescan@new_stc with: parent_uid: ${{ secrets.ALI_PID }} private_key: ${{ secrets.ALI_PK }} From 9a8bbc8e28d0d6049eb6bf34d5ce4ca1a86d784a Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 30 Dec 2024 19:28:32 +0800 Subject: [PATCH 37/45] Update pom.xml --- pom.xml | 1 - 1 file changed, 1 deletion(-) diff --git a/pom.xml b/pom.xml index d91fa18aa..b251c248d 100644 --- a/pom.xml +++ b/pom.xml @@ -16,7 +16,6 @@ http://www.antfin.com/ - all From 03696e8dca5f997d0c4755eeba3d69be67b5f093 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Thu, 2 Jan 2025 17:08:48 +0800 Subject: [PATCH 38/45] Update cloud_code_scan.yml --- .github/workflows/cloud_code_scan.yml | 15 ++++----------- 1 file changed, 4 insertions(+), 11 deletions(-) diff --git a/.github/workflows/cloud_code_scan.yml b/.github/workflows/cloud_code_scan.yml index 13b5c76d4..fb7dcf3a2 100644 --- a/.github/workflows/cloud_code_scan.yml +++ b/.github/workflows/cloud_code_scan.yml @@ -6,28 +6,21 @@ on: branches: [ master ] #pull_request_target: jobs: - # # stc作业使用了ubuntu-latest作为运行环境,包含了一个步骤(steps)codeScan,该步骤使用了layotto/alipay-cloud-devops-codescan@main作为GitHub Action,并传入了一些参数(parent_uid、private_key、code_type) - stc: # 安全扫描 + stc: #安全扫描 runs-on: ubuntu-latest steps: - name: codeScan - uses: huqiuxiang/alipay-cloud-devops-codescan@new_stc + uses: layotto/alipay-cloud-devops-codescan@main with: parent_uid: ${{ secrets.ALI_PID }} private_key: ${{ secrets.ALI_PK }} - scan_type: stc - # 按需配置,不配置为空即可注意‘’中需要有空格,或直接去点tips - tips: '可以加入钉钉群:xxxx 来申请查看权限' - # sca作业也使用了ubuntu-latest作为运行环境。sca作业也包含了一个步骤codeScan,使用了相同的GitHub Action,并传入了相同的参数。 - # 此YAML文件定义了两个作业,分别用于进行安全扫描和开源合规的代码扫描,使用了相同的GitHub Action,并传入了不同的参数。 + scan_type: stc sca: # 开源合规 runs-on: ubuntu-latest steps: - name: codeScan - uses: huqiuxiang/alipay-cloud-devops-codescan@new_stc + uses: layotto/alipay-cloud-devops-codescan@main with: parent_uid: ${{ secrets.ALI_PID }} private_key: ${{ secrets.ALI_PK }} scan_type: sca - # 按需配置,不配置为空即可注意‘’中需要有空格,或直接去点tips - tips: '可以加入钉钉群:xxxx 来申请查看权限' From a31f05223608e5235b068ac25873703bdc9e9663 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Thu, 2 Jan 2025 18:31:04 +0800 Subject: [PATCH 39/45] Update cloud_code_scan.yml --- .github/workflows/cloud_code_scan.yml | 17 +++++++++++++---- 1 file changed, 13 insertions(+), 4 deletions(-) diff --git a/.github/workflows/cloud_code_scan.yml b/.github/workflows/cloud_code_scan.yml index fb7dcf3a2..17d946313 100644 --- a/.github/workflows/cloud_code_scan.yml +++ b/.github/workflows/cloud_code_scan.yml @@ -4,23 +4,32 @@ on: branches: [ master ] pull_request: branches: [ master ] + #pull_request_target: jobs: - stc: #安全扫描 + # # stc作业使用了ubuntu-latest作为运行环境,包含了一个步骤(steps)codeScan,该步骤使用了layotto/alipay-cloud-devops-codescan@main作为GitHub Action,并传入了一些参数(parent_uid、private_key、code_type) + stc: # 安全扫描 runs-on: ubuntu-latest steps: - name: codeScan - uses: layotto/alipay-cloud-devops-codescan@main + uses: huqiuxiang/alipay-cloud-devops-codescan@new_stc_xihuan with: parent_uid: ${{ secrets.ALI_PID }} private_key: ${{ secrets.ALI_PK }} - scan_type: stc + cybersec_token: ${{ secrets.cybersec_token }} + scan_type: stc + # 按需配置,不配置为空即可注意‘’中需要有空格,或直接去点tips + tips: '可以加入钉钉群:xxxx 来申请查看权限' + # sca作业也使用了ubuntu-latest作为运行环境。sca作业也包含了一个步骤codeScan,使用了相同的GitHub Action,并传入了相同的参数。 + # 此YAML文件定义了两个作业,分别用于进行安全扫描和开源合规的代码扫描,使用了相同的GitHub Action,并传入了不同的参数。 sca: # 开源合规 runs-on: ubuntu-latest steps: - name: codeScan - uses: layotto/alipay-cloud-devops-codescan@main + uses: huqiuxiang/alipay-cloud-devops-codescan@new_stc_xihuan with: parent_uid: ${{ secrets.ALI_PID }} private_key: ${{ secrets.ALI_PK }} scan_type: sca + # 按需配置,不配置为空即可注意‘’中需要有空格,或直接去点tips + tips: '可以加入钉钉群:xxxx 来申请查看权限' From 276c15f6182f6b49d60be802ea0f6e47582686c4 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Thu, 2 Jan 2025 18:45:26 +0800 Subject: [PATCH 40/45] Update pom.xml --- pom.xml | 1 + 1 file changed, 1 insertion(+) diff --git a/pom.xml b/pom.xml index b251c248d..d91fa18aa 100644 --- a/pom.xml +++ b/pom.xml @@ -16,6 +16,7 @@ http://www.antfin.com/ + all From 4d213a65a18cfef41e0e9b25e0758d56fa017159 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Thu, 2 Jan 2025 19:01:40 +0800 Subject: [PATCH 41/45] Update pom.xml --- pom.xml | 1 - 1 file changed, 1 deletion(-) diff --git a/pom.xml b/pom.xml index d91fa18aa..b251c248d 100644 --- a/pom.xml +++ b/pom.xml @@ -16,7 +16,6 @@ http://www.antfin.com/ - all From f1d8100c865c543e6434a409aabae4c1ae27ee70 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Fri, 7 Feb 2025 14:26:42 +0800 Subject: [PATCH 42/45] Update cloud_code_scan.yml --- .github/workflows/cloud_code_scan.yml | 16 ++++------------ 1 file changed, 4 insertions(+), 12 deletions(-) diff --git a/.github/workflows/cloud_code_scan.yml b/.github/workflows/cloud_code_scan.yml index 17d946313..6fc0aa449 100644 --- a/.github/workflows/cloud_code_scan.yml +++ b/.github/workflows/cloud_code_scan.yml @@ -7,29 +7,21 @@ on: #pull_request_target: jobs: - # # stc作业使用了ubuntu-latest作为运行环境,包含了一个步骤(steps)codeScan,该步骤使用了layotto/alipay-cloud-devops-codescan@main作为GitHub Action,并传入了一些参数(parent_uid、private_key、code_type) - stc: # 安全扫描 + stc: #安全扫描 runs-on: ubuntu-latest steps: - name: codeScan - uses: huqiuxiang/alipay-cloud-devops-codescan@new_stc_xihuan + uses: layotto/alipay-cloud-devops-codescan@main with: parent_uid: ${{ secrets.ALI_PID }} private_key: ${{ secrets.ALI_PK }} - cybersec_token: ${{ secrets.cybersec_token }} - scan_type: stc - # 按需配置,不配置为空即可注意‘’中需要有空格,或直接去点tips - tips: '可以加入钉钉群:xxxx 来申请查看权限' - # sca作业也使用了ubuntu-latest作为运行环境。sca作业也包含了一个步骤codeScan,使用了相同的GitHub Action,并传入了相同的参数。 - # 此YAML文件定义了两个作业,分别用于进行安全扫描和开源合规的代码扫描,使用了相同的GitHub Action,并传入了不同的参数。 + scan_type: stc sca: # 开源合规 runs-on: ubuntu-latest steps: - name: codeScan - uses: huqiuxiang/alipay-cloud-devops-codescan@new_stc_xihuan + uses: layotto/alipay-cloud-devops-codescan@main with: parent_uid: ${{ secrets.ALI_PID }} private_key: ${{ secrets.ALI_PK }} scan_type: sca - # 按需配置,不配置为空即可注意‘’中需要有空格,或直接去点tips - tips: '可以加入钉钉群:xxxx 来申请查看权限' From a45e250dd3d072e47fd3e38b97a0b1f433104bd7 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Fri, 7 Feb 2025 14:47:56 +0800 Subject: [PATCH 43/45] Update cloud_code_scan.yml --- .github/workflows/cloud_code_scan.yml | 7 +------ 1 file changed, 1 insertion(+), 6 deletions(-) diff --git a/.github/workflows/cloud_code_scan.yml b/.github/workflows/cloud_code_scan.yml index 6fc0aa449..f735fd3d9 100644 --- a/.github/workflows/cloud_code_scan.yml +++ b/.github/workflows/cloud_code_scan.yml @@ -1,11 +1,6 @@ name: Alipay Cloud Devops Codescan on: - push: - branches: [ master ] - pull_request: - branches: [ master ] - - #pull_request_target: + pull_request_target: jobs: stc: #安全扫描 runs-on: ubuntu-latest From 07d1eba6927be28f049e84c706ac839c3b5e1f33 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 10 Feb 2025 18:07:51 +0800 Subject: [PATCH 44/45] Update cloud_code_scan.yml From 87c5d254dd366fc59de88af3bc0e57bd719b86d7 Mon Sep 17 00:00:00 2001 From: huqiuxiang <71514213+huqiuxiang@users.noreply.github.com> Date: Mon, 10 Feb 2025 18:08:43 +0800 Subject: [PATCH 45/45] Update cloud_code_scan.yml --- .github/workflows/cloud_code_scan.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/cloud_code_scan.yml b/.github/workflows/cloud_code_scan.yml index f735fd3d9..9b693b1d8 100644 --- a/.github/workflows/cloud_code_scan.yml +++ b/.github/workflows/cloud_code_scan.yml @@ -6,7 +6,7 @@ jobs: runs-on: ubuntu-latest steps: - name: codeScan - uses: layotto/alipay-cloud-devops-codescan@main + uses: huqiuxiang/alipay-cloud-devops-codescan@main with: parent_uid: ${{ secrets.ALI_PID }} private_key: ${{ secrets.ALI_PK }} @@ -15,7 +15,7 @@ jobs: runs-on: ubuntu-latest steps: - name: codeScan - uses: layotto/alipay-cloud-devops-codescan@main + uses: huqiuxiang/alipay-cloud-devops-codescan@main with: parent_uid: ${{ secrets.ALI_PID }} private_key: ${{ secrets.ALI_PK }}