Refactor CI workflows: integrate dependency review and remove obsolet…#718
Conversation
…e secure scanning workflow
|
This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation. |
2 similar comments
|
This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation. |
|
This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation. |
frasermolyneux
temporarily deployed
to
Development
GitHub Actions
Inactive
There was a problem hiding this comment.
Pull request overview
This pull request consolidates security and dependency scanning into the main code quality workflow by removing the standalone devops-secure-scanning.yml workflow and integrating its functionality into codequality.yml through a reusable workflow call and a new dependency-review job.
Changes:
- Removed the standalone
.github/workflows/devops-secure-scanning.ymlworkflow file - Added
devops-secure-scanningjob tocodequality.ymlthat calls a reusable workflow fromfrasermolyneux/actions - Added
dependency-reviewjob tocodequality.ymlfor pull request dependency scanning
Reviewed changes
Copilot reviewed 2 out of 2 changed files in this pull request and generated 2 comments.
| File | Description |
|---|---|
.github/workflows/devops-secure-scanning.yml |
Removed standalone security scanning workflow that ran Microsoft Security DevOps Analysis |
.github/workflows/codequality.yml |
Added two new jobs: devops-secure-scanning (reusable workflow call) and dependency-review (PR-only dependency scanning) |
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
frasermolyneux
temporarily deployed
to
Development
GitHub Actions
Inactive
frasermolyneux
temporarily deployed
to
Development
GitHub Actions
Inactive
frasermolyneux
temporarily deployed
to
Development
GitHub Actions
Inactive
|
This pull request updates the code quality workflow by integrating security and dependency scanning jobs directly into
.github/workflows/codequality.yml, and removes the now-redundant standalonedevops-secure-scanning.ymlworkflow. These changes streamline CI configuration and ensure security checks are run as part of the main code quality process.Workflow integration and simplification:
devops-secure-scanninganddependency-reviewjobs to.github/workflows/codequality.yml, ensuring security and dependency scanning are part of the main code quality workflow..github/workflows/devops-secure-scanning.ymlfile, consolidating security scanning configuration into a single workflow file.…e secure scanning workflow