Merge pull request #2 from dfds/refactor-mvp-work

dfds · Nov 13, 2023 · 863a528 · 863a528
2 parents aa6ffda + 3adbd1d
commit 863a528
Show file tree

Hide file tree

Showing 47 changed files with 5,166 additions and 16 deletions.
diff --git a/.github/workflows/housekeeping.yml b/.github/workflows/housekeeping.yml
@@ -0,0 +1,14 @@
+name: Housekeeping
+
+on:
+  schedule:
+    - cron: "0 6 * * 1"
+
+jobs:
+  shared:
+    uses: dfds/shared-workflows/.github/workflows/automation-housekeeping.yml@master
+    secrets: inherit
+    with:
+      delete_head_branch: true
+      squash_merge: true
+      branch_protection: true
diff --git a/.github/workflows/secret-detection.yml b/.github/workflows/secret-detection.yml
@@ -24,13 +24,14 @@ jobs:
           chmod +x gitleaks
       - name: Scan with gitleaks
         run: ./gitleaks detect --exit-code 0 --redact --report-format sarif --report-path gitleaks-results.sarif
-
-      - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@v2
-        with:
-          # Path to SARIF file relative to the root of the repository
-          sarif_file: gitleaks-results.sarif
-          category: GitLeaks Secret Scanning
+
+      # Disabled this until repo is switched to be public
+      # - name: Upload SARIF file
+      #   uses: github/codeql-action/upload-sarif@v2
+      #   with:
+      #     # Path to SARIF file relative to the root of the repository
+      #     sarif_file: gitleaks-results.sarif
+      #     category: GitLeaks Secret Scanning
 
       - name: Clean up results file
         run: rm -f gitleaks-results.sarif
diff --git a/.github/workflows/tfsec.yml b/.github/workflows/tfsec.yml
@@ -15,13 +15,14 @@ jobs:
         uses: actions/checkout@master
 
       - name: tfsec
-        uses: tfsec/tfsec-sarif-action@master
+        uses: aquasecurity/tfsec-sarif-action@master
         with:
           sarif_file: tfsec.sarif
 
-      - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@v2
-        with:
-          # Path to SARIF file relative to the root of the repository
-          sarif_file: tfsec.sarif
-          category: Tfsec IAC Scanning
+      # Disabled this until repo is switched to be public
+      # - name: Upload SARIF file
+      #   uses: github/codeql-action/upload-sarif@v2
+      #   with:
+      #     # Path to SARIF file relative to the root of the repository
+      #     sarif_file: tfsec.sarif
+      #     category: Tfsec IAC Scanning
diff --git a/README.md b/README.md