chore: Change security-scan workflow to inherit secrets #64

pravindahal · 2025-02-10T15:57:03Z

Since security scan workflow does not have access to GitHub token, it cannot download private submodules:

Add support for downloading internal submodules github-workflow-supply-chain-security-validation#109

While it only affects repos with go projects which use private/internal submodules, there are no downsides to having
this in every repo and it helps us keep things consistent.

This PR was automatically generated by a codemod implemented in the following PR:

https://github.com/coopnorge/codemod/pull/124

spacelift-io · 2025-02-10T15:57:32Z

Resource changes for stack atze-stack-testing-dev (link)

Show Resources

chore: Change security-scan workflow to inherit secrets

58c9354

pravindahal self-assigned this Feb 10, 2025

policy-bot-coop-norge bot requested review from bendiknesbo, CRCOOP, dalryan, geethu-mohan, guillermoBallester, karkinissan, LinMAD and msporshe February 10, 2025 15:57

github-actions bot added release-drafter:patch release-drafter:chore labels Feb 10, 2025

github-actions bot added the release-drafter-go:patch label Feb 10, 2025

bendiknesbo approved these changes Feb 11, 2025

View reviewed changes

bendiknesbo merged commit d066c18 into main Feb 11, 2025
15 checks passed

bendiknesbo deleted the pravindahal/chore/Change-security-scan-workflow-to-inherit-secrets branch February 11, 2025 07:21

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore: Change security-scan workflow to inherit secrets #64

chore: Change security-scan workflow to inherit secrets #64

pravindahal commented Feb 10, 2025

spacelift-io bot commented Feb 10, 2025

chore: Change security-scan workflow to inherit secrets #64

chore: Change security-scan workflow to inherit secrets #64

Conversation

pravindahal commented Feb 10, 2025

spacelift-io bot commented Feb 10, 2025

Resource changes for stack atze-stack-testing-dev (link)