| Age | Commit message (Collapse) | Author |
|---|
|
|
|
* chore: do not pass artifacts to downstream jobs
* chore: expire artifacts
* chore: point to new project_id
* chore: remove after_script
* refactor: rename license-management to license-finder
* docs: Add changelog entry and update links to old repo
|
|
* docs: Add changelog entry
* fix: update spec to match expected behaviour
|
|
|
|
* fix: perform scan from within dir containing `go.mod`
* docs: add changelog entry
* test: add spec to reproduce defect
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
* chore: remove intermediate containers
* fix: Update rack to 2.2.3
* fix: import nodejs keyring after plugin update
* fix: install dev packages for C based tools
* fix: remove unnecessary packages and cleanup
|
|
|
|
|
|
* do not allow license_scanning job to fail
* update script to download *.deb files
* ensure apt db is valid
* Update CHANGELOG and bump version
|
|
|
|
|
|
|
|
|
|
|
|
* Update CHANGELOG
* Add default retry for all jobs
* Ensure all deb packages are built
|
|
|
|
* Use same composer.json and composer.lock file from issue
* Check if vendor path exists before specifying env vars
* Install php from deb package
|
|
In some cases the '$HOME' environment
variable is overwritten in the runtime
environment. This occurred when running
this image in a OpenShift environment.
|
|
|
|
* Ensure mono deb job completes successfully
* Sync the CA certificates
|
|
|
|
* Add test to scan cargo project with packages from a private registry
* Synchronize mono cert store
* Wipe nuget package cache before specs
* Compress /usr/local/share
* Exclude development dependencies
* Add CHANGELOG entry
|
|
|
|
|
|
|
|
|
|
Related to changes in https://gitlab.com/gitlab-org/security-products/tests/csharp-nuget-dotnetcore/-/merge_requests/19
|
|
* Add test to install composer packages from custom TLS endpoint
* Remove dev dependencies from fixture files
* Install composer packages in vendor_path
* Bump version and update CHANGELOG
|
|
|
|
|
|
|
|
* Let maven figure out the version of the license plugin that it is compatible with
* Print the error when the setup fails
* Add tests for multiple versions of maven and java
* Install packages into a project specific directory to prevent cross test pollution
* Specify the list of supported Maven versions
* Update CHANGELOG and bump the version
|
|
* Install ca-certificates-mono
* Download *.deb files to /opt/toolcache/mono
|
|
* Include the latest dotnet SDK in the /opt/asdf/installs directory.
* Update CHANGELOG and bump version
* Compress large directories
|
|
|
|
* Install custom ca certificate in location where nuget can recognize it
* Add subject alternative name to the generate x509 cert
* Do not cache packages and https requests
* Detect vbproj, fsproj, csproj, and sln files
* Improve nuget package detection
* Parse SPDX license expression from nuspec files
* Update version and update CHANGELOG
|
|
|
|
|
|
* Target ruby version 2.7.1
* Add spec to fetch gems from a custom source
* Add proxy to rubygems.org config
* Specify default env vars to support offline environment
* Cleanup custom certificates after spec
* Inline docker-test script
* Do not install license_finder with each installed ruby
* Increase gem log verbosity and include backtrace
* Extract test fixtures for the different ruby scenarios
* Find *.gemspec files in gems dir
* Use RUBYLIB to hijack src path
* Run scan from project path dir
|
|
|
|
|
|
|
