Merge branch 'main' into basic_execution_test_for_EPSS

intel · Dec 18, 2024 · 873c6b6 · 873c6b6
2 parents 4d8d200 + 37f514c
commit 873c6b6
Show file tree

Hide file tree

Showing 29 changed files with 14,039 additions and 6,858 deletions.
diff --git a/.github/actions/spelling/allow.txt b/.github/actions/spelling/allow.txt
@@ -94,6 +94,7 @@ codecov
 collectd
 commons
 compress
+conan
 conda
 config
 connman

diff --git a/.github/actions/spelling/expect.txt b/.github/actions/spelling/expect.txt
@@ -13,4 +13,4 @@ NOTKNOWN
 pyyaml
 skontar
 Svunknown
-urllib
+urllib
diff --git a/.github/workflows/build-wheel.yml b/.github/workflows/build-wheel.yml
@@ -44,11 +44,11 @@ jobs:
         echo "tar=$(cd dist/ && echo *.tar.gz)" >> $GITHUB_OUTPUT
         echo "whl=$(cd dist/ && echo *.tar.gz)" >> $GITHUB_OUTPUT
     - name: Attest Build Provenance for tar
-      uses: actions/attest-build-provenance@ef244123eb79f2f7a7e75d99086184180e6d0018 # v1.4.4
+      uses: actions/attest-build-provenance@7668571508540a607bdfd90a87a560489fe372eb # v2.1.0
       with:
         subject-path: "dist/${{ steps.filename.outputs.tar }}"
     - name: Attest Build Provenance for whl
-      uses: actions/attest-build-provenance@ef244123eb79f2f7a7e75d99086184180e6d0018 # v1.4.4
+      uses: actions/attest-build-provenance@7668571508540a607bdfd90a87a560489fe372eb # v2.1.0
       with:
         subject-path: "dist/${{ steps.filename.outputs.whl }}"
     # TODO Upload to pypi on release creation
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -51,7 +51,7 @@ jobs:
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@ea9e4e37992a54ee68a9622e985e60c8e8f12d9f # v3.27.4
+      uses: github/codeql-action/init@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
       with:
         languages: ${{ matrix.language }}
         # If you wish to specify custom queries, you can do so here or in a config file.
@@ -76,4 +76,4 @@ jobs:
     #   make release
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@ea9e4e37992a54ee68a9622e985e60c8e8f12d9f # v3.27.4
+      uses: github/codeql-action/analyze@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
diff --git a/.github/workflows/cve_scan.yml b/.github/workflows/cve_scan.yml
@@ -32,7 +32,7 @@ jobs:
         run: |
           echo "date=$(/bin/date -u "+%Y%m%d")" >> $GITHUB_OUTPUT
       - name: Get cached database
-        uses: actions/cache@6849a6489940f00c2f30c0fb92c6274307ccb58a # v4.1.2
+        uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
         with:
           path: cache
           key: Linux-cve-bin-tool-${{ steps.get-date.outputs.date }}

diff --git a/.github/workflows/fuzzing.yml b/.github/workflows/fuzzing.yml
@@ -51,13 +51,13 @@ jobs:
           echo "yesterday=$(/bin/date -d "-1 day" -u "+%Y%m%d")" >> $GITHUB_OUTPUT
 
       - name: Get today's cached database
-        uses: actions/cache@6849a6489940f00c2f30c0fb92c6274307ccb58a # v4.1.2
+        uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
         id: todays-cache
         with:
           path: fuzz-cache
           key: Linux-cve-bin-tool-${{ steps.get-date.outputs.date }}
       - name: Get yesterday's cached database if today's is not available
-        uses: actions/cache@6849a6489940f00c2f30c0fb92c6274307ccb58a # v4.1.2
+        uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
         if: steps.todays-cache.outputs.cache-hit != 'true'
         with:
           path: fuzz-cache
-Original file line number
+Diff line change
@@ Expand Up / @@ -94,6 +94,7 @@ codecov @@
     collectd
     commons
     compress
+    conan
     conda
     config
     connman
@@ Expand Down @@