mirror of
https://github.com/flutter/flutter.git
synced 2026-02-20 02:29:02 +08:00
67333ec64c
* initial flatten deps scan * move 3rd party scan to separate action * allow fork to run * install requests * use packages * pip install * rename * conditional vuln report * trailing whitespace * trailing whitespace * detailed print * add testing file * add upload test sarif * results sarif * move sarif * upload modified sarif * test flow * test with results.sarif * formatting * test naming convention * description with text in artifactLocation * don't use locations * use template sarif * just use template * add one field mod * add another field mod * use actual osvReport * add field * add field * test * no information uri * no information uri * add name * template NA data for results * back to minimal template * dynamic rules * template update * no results * only use template * test * new test * new test * add back locations * descriptive fields * test * use package name * variable commit hash * add chromium accessibility readme support * use batch query test * clean up * use variables for sarif template * initial automating ancestor commit * allow for workflow on testing * install gitpython in workflow * wrap in try * expand try * check commit is not none * quiet clone * fix commit newline * proper print for failed deps * remove gitpython * remove import * fix origin source * remove .dart from dep names * update dep * typo * update * clone into controlled name repo now * fix github upstream clone url * test CVE finding * use templated rule and result * typo * remove test CVE * add link straight to OSV DB * comments * use os mkdir * check time of pinned commit * quiet git * print osv api query results if vulns found * move upstream mapping into DEPS file * add testing for DEPS file * add khronos exception * add basic ancestor commit test * no vulns message * do not produce empty sarif * add yaml * remove unused python dep * no change? * no more print, causing recipe issues * string test * string test * no more fstrings * convert to .format * syntax * remove unused dep * test * switch test script * no encoding * add back test * typo * remove scan flat deps tests again * update * fix tests * typo * newline * use checkout dir * prefix * update to use prefix * lint * runhook attempt * lint * lint * lint * lint * no license blurb * cleanup * enable for main * do not raise error * run on branch * data indentation * check file existence