From ebbb5eff479e01e88a84b9fabeccf9cacac4597b Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Mon, 20 Jan 2025 12:12:31 +0530 Subject: [PATCH 1/9] sca-scan.yml --- .github/workflows/sca-scan.yml | 8 ++------ 1 file changed, 2 insertions(+), 6 deletions(-) diff --git a/.github/workflows/sca-scan.yml b/.github/workflows/sca-scan.yml index c1519f9..4fa4560 100644 --- a/.github/workflows/sca-scan.yml +++ b/.github/workflows/sca-scan.yml @@ -6,14 +6,10 @@ jobs: security-sca: runs-on: ubuntu-latest steps: - - name: Checkout repository - uses: actions/checkout@master - - name: Run Dotnet Restore - run: | - dotnet restore + - uses: actions/checkout@master - name: Run Snyk to check for vulnerabilities uses: snyk/actions/dotnet@master env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - args: --file=Contentstack.Management.Core/obj/project.assets.json --fail-on=all + args: --fail-on=all From 05af5e037eb077b285b3958b01a465adda547c6f Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Mon, 20 Jan 2025 12:12:43 +0530 Subject: [PATCH 2/9] jira.yml --- .github/workflows/jira.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/jira.yml b/.github/workflows/jira.yml index caa4bbd..250abc7 100644 --- a/.github/workflows/jira.yml +++ b/.github/workflows/jira.yml @@ -21,7 +21,7 @@ jobs: project: ${{ secrets.JIRA_PROJECT }} issuetype: ${{ secrets.JIRA_ISSUE_TYPE }} summary: | - ${{ github.event.pull_request.title }} + Snyk | Vulnerability | ${{ github.event.repository.name }} | ${{ github.event.pull_request.title }} description: | PR: ${{ github.event.pull_request.html_url }} From b467628d13c6048a01b8174cb49c8d6a5fca1f3a Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Mon, 20 Jan 2025 12:12:45 +0530 Subject: [PATCH 3/9] sast-scan.yml From 061c832b946ebd90c2ab1c522bb7eac28cd9a7c4 Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Mon, 20 Jan 2025 12:12:49 +0530 Subject: [PATCH 4/9] Updated codeowners --- .github/CODEOWNERS | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index 0773923..1be7e0d 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -1 +1 @@ -* @contentstack/security-admin \ No newline at end of file +* @contentstack/security-admin From 64b01ac40ab8a77a458d3d6256885ec106516507 Mon Sep 17 00:00:00 2001 From: Nadeem Patwekar Date: Mon, 17 Feb 2025 13:25:20 +0530 Subject: [PATCH 5/9] chore: dependency update for synk issues --- .../Contentstack.Management.Core.Tests.csproj | 24 +++++++++---------- 1 file changed, 12 insertions(+), 12 deletions(-) diff --git a/Contentstack.Management.Core.Tests/Contentstack.Management.Core.Tests.csproj b/Contentstack.Management.Core.Tests/Contentstack.Management.Core.Tests.csproj index 4450c78..f7f762f 100644 --- a/Contentstack.Management.Core.Tests/Contentstack.Management.Core.Tests.csproj +++ b/Contentstack.Management.Core.Tests/Contentstack.Management.Core.Tests.csproj @@ -4,26 +4,26 @@ net7.0 false - 0.1.10 + 0.1.3 true ../CSManagementSDK.snk - - - - runtime; build; native; contentfiles; analyzers; buildtransitive + + + + runtime; build; native; contentfiles; analyzers; buildtransitive all - - - - - - - + + + + + + + From 1ac3f3b46b54c9f6adfc07280d4eb2d5f2b43f24 Mon Sep 17 00:00:00 2001 From: Nadeem Patwekar Date: Mon, 17 Feb 2025 13:38:23 +0530 Subject: [PATCH 6/9] fix: change version number to dynamic from directory.build.props --- .../Contentstack.Management.Core.Tests.csproj | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Contentstack.Management.Core.Tests/Contentstack.Management.Core.Tests.csproj b/Contentstack.Management.Core.Tests/Contentstack.Management.Core.Tests.csproj index f7f762f..4d605a0 100644 --- a/Contentstack.Management.Core.Tests/Contentstack.Management.Core.Tests.csproj +++ b/Contentstack.Management.Core.Tests/Contentstack.Management.Core.Tests.csproj @@ -4,7 +4,7 @@ net7.0 false - 0.1.3 + $(Version) true ../CSManagementSDK.snk From 0a4b9aa8d14dfac64c3e3b3f18b9bbe76d60dcbd Mon Sep 17 00:00:00 2001 From: Nadeem Patwekar Date: Mon, 17 Feb 2025 13:46:17 +0530 Subject: [PATCH 7/9] chore: packages update for unit tests --- ...tentstack.Management.Core.Unit.Tests.csproj | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/Contentstack.Management.Core.Unit.Tests/Contentstack.Management.Core.Unit.Tests.csproj b/Contentstack.Management.Core.Unit.Tests/Contentstack.Management.Core.Unit.Tests.csproj index 8c53ce9..82b764b 100644 --- a/Contentstack.Management.Core.Unit.Tests/Contentstack.Management.Core.Unit.Tests.csproj +++ b/Contentstack.Management.Core.Unit.Tests/Contentstack.Management.Core.Unit.Tests.csproj @@ -4,22 +4,22 @@ net7.0 false - $(Version) + 0.1.3 true ../CSManagementSDK.snk - - - - runtime; build; native; contentfiles; analyzers; buildtransitive + + + + runtime; build; native; contentfiles; analyzers; buildtransitive all - - - - + + + + From 47d031764fd77b497717e0526f171253303e247a Mon Sep 17 00:00:00 2001 From: Nadeem Patwekar Date: Mon, 17 Feb 2025 15:21:31 +0530 Subject: [PATCH 8/9] chore: update sca scan workflow --- .github/workflows/sca-scan.yml | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sca-scan.yml b/.github/workflows/sca-scan.yml index 4fa4560..c1519f9 100644 --- a/.github/workflows/sca-scan.yml +++ b/.github/workflows/sca-scan.yml @@ -6,10 +6,14 @@ jobs: security-sca: runs-on: ubuntu-latest steps: - - uses: actions/checkout@master + - name: Checkout repository + uses: actions/checkout@master + - name: Run Dotnet Restore + run: | + dotnet restore - name: Run Snyk to check for vulnerabilities uses: snyk/actions/dotnet@master env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - args: --fail-on=all + args: --file=Contentstack.Management.Core/obj/project.assets.json --fail-on=all From 8128b250e7e44c0f6efd81965e0b10e9ed3e6b0f Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Mon, 17 Feb 2025 15:31:01 +0530 Subject: [PATCH 9/9] Update LICENSE --- LICENSE | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/LICENSE b/LICENSE index e17cc92..3851325 100644 --- a/LICENSE +++ b/LICENSE @@ -1,6 +1,6 @@ MIT License -Copyright (c) 2012-2024 Contentstack +Copyright (c) 2012-2025 Contentstack Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal