Merge pull request #59 from fortify/release-please--branches--main--c…

…omponents--github-action

chore(main): release 1.5.1

CHANGELOG.md

@@ -1,5 +1,57 @@
 # Changelog
 
+## [1.5.1](https://github.com/fortify/github-action/compare/v1.5.0...v1.5.1) (2024-11-01)
+
+
+### Features
+
+* Add `DO_POLICY_CHECK` and related inputs to enable policy checks after scan completion ([6ee342d](https://github.com/fortify/github-action/commit/6ee342da2f7ce5c98c8fa19b1fbeed461fbda260))
+* Add `DO_PR_COMMENT` and related inputs to enable Pull Request comment generation ([6ee342d](https://github.com/fortify/github-action/commit/6ee342da2f7ce5c98c8fa19b1fbeed461fbda260))
+* Add `DO_SETUP` and related inputs to enable application version/release creation/setup ([6ee342d](https://github.com/fortify/github-action/commit/6ee342da2f7ce5c98c8fa19b1fbeed461fbda260))
+* Add `EXPORT_ACTION` and `EXPORT_EXTRA_OPTS` inputs to allow for export customization ([6ee342d](https://github.com/fortify/github-action/commit/6ee342da2f7ce5c98c8fa19b1fbeed461fbda260))
+* Add ability to run and import Debricked scans into SSC (closes [#41](https://github.com/fortify/github-action/issues/41)) ([6ee342d](https://github.com/fortify/github-action/commit/6ee342da2f7ce5c98c8fa19b1fbeed461fbda260))
+* Add support for Debricked CLI on fortify/github-action/setup ([2c7c1e7](https://github.com/fortify/github-action/commit/2c7c1e703af0d7b0f56adf456bf8fa019a51f72a))
+* Add support for fcli 2.1.0 ([7aafc0e](https://github.com/fortify/github-action/commit/7aafc0e7f3ab68a3e2cc010a570981ac38afb5b8))
+* Add support for updateable/customizable tool definitions ([2c7c1e7](https://github.com/fortify/github-action/commit/2c7c1e703af0d7b0f56adf456bf8fa019a51f72a))
+* FoD: Add support for creating application through `DO_SETUP` ([2d91e3c](https://github.com/fortify/github-action/commit/2d91e3c5c405391e5ee2cfe725a77b0ded38dcd0))
+* FoD: Automatically set `--app-owner` if `FOD_USER` is configured ([345ddda](https://github.com/fortify/github-action/commit/345ddda04de863b34e9566df5ea088f5872eeef4))
+* FoD: Improve handling of `--copy-from` option in `SETUP_EXTRA_OPTS` ([2d91e3c](https://github.com/fortify/github-action/commit/2d91e3c5c405391e5ee2cfe725a77b0ded38dcd0))
+* Major documentation usability improvements ([22ea8e9](https://github.com/fortify/github-action/commit/22ea8e9ef9edb24e364d1dc66230649726ad450c))
+* SC-SAST: Add support for passing scan arguments through `SC_SAST_SCAN_EXTRA_OPTS` ([1bb5d5b](https://github.com/fortify/github-action/commit/1bb5d5b6b23f8b432db8ff43a04ba58c8477ff51))
+* Simplify setup of Debricked scans on FoD ([7c25788](https://github.com/fortify/github-action/commit/7c25788b4c57582d2039d70a1ad9aeb228e34c6c))
+* Update fcli to 2.9.0 ([2d91e3c](https://github.com/fortify/github-action/commit/2d91e3c5c405391e5ee2cfe725a77b0ded38dcd0))
+* Update ScanCentral Client to 24.4.0 ([f3246ac](https://github.com/fortify/github-action/commit/f3246ac1d35a20a34df0a2d404479f1fabeae574))
+* Use fcli instead of FortifyVulnerabilityExporter for vulnerability export (closes [#37](https://github.com/fortify/github-action/issues/37)) ([6ee342d](https://github.com/fortify/github-action/commit/6ee342da2f7ce5c98c8fa19b1fbeed461fbda260))
+
+
+### Bug Fixes
+
+* Allow tool artifacts to be extracted on older PowerShell versions (work-around for https://github.com/actions/toolkit/issues/1179) ([6375519](https://github.com/fortify/github-action/commit/6375519eb64590a413c417f4860be2f0d558197f))
+* Deprecate EXTRA_*_OPTS variables; these are replaced by *_EXTRA_OPTS variables for consistency ([6ee342d](https://github.com/fortify/github-action/commit/6ee342da2f7ce5c98c8fa19b1fbeed461fbda260))
+* Fix default values for app/version/release ([4ccc5d9](https://github.com/fortify/github-action/commit/4ccc5d9cf86ac7ca0cbf4329b4bf9368b3bb4199))
+* Fix documentation on ScanCentral SAST inputs (fixes [#23](https://github.com/fortify/github-action/issues/23)) ([3a20c7c](https://github.com/fortify/github-action/commit/3a20c7c27810a16129a63b2d7b244072f673d73a))
+* Fix failed 1.5.0 release ([59a2d07](https://github.com/fortify/github-action/commit/59a2d07218bbf90236de8e89cb2883584612e618))
+* Fix ScanCentral SAST documentation link to point to right version ([3b5cd8b](https://github.com/fortify/github-action/commit/3b5cd8bc279d25264d4afbc9a66f9b26144e68f9))
+* FoD: Use `Development` as default value for `--sdlc-status` in `SETUP_EXTRA_OPTS` ([1bb5d5b](https://github.com/fortify/github-action/commit/1bb5d5b6b23f8b432db8ff43a04ba58c8477ff51))
+* FoD: Wait for new release to leave suspended state before attempting to start a scan ([1bb5d5b](https://github.com/fortify/github-action/commit/1bb5d5b6b23f8b432db8ff43a04ba58c8477ff51))
+* Improve parsing of boolean flags in `*_EXTRA_OPTS` ([2d91e3c](https://github.com/fortify/github-action/commit/2d91e3c5c405391e5ee2cfe725a77b0ded38dcd0))
+* Install Java version as required by ScanCentral Client (closes [#10](https://github.com/fortify/github-action/issues/10)) ([6ee342d](https://github.com/fortify/github-action/commit/6ee342da2f7ce5c98c8fa19b1fbeed461fbda260))
+* Partial fix to use proper sub-action versions ([7272d0d](https://github.com/fortify/github-action/commit/7272d0d5a7fa67ba3a2eed960818c40f1667e8ab))
+* Properly handle app/release/version names containing spaces ([c04ac28](https://github.com/fortify/github-action/commit/c04ac28398685799fb76a7b02acbcb18af034231))
+* Update `FOD_RELEASE`/`SSC_APPVERSION` documentation with correct default values (fixes [#43](https://github.com/fortify/github-action/issues/43)) ([6ee342d](https://github.com/fortify/github-action/commit/6ee342da2f7ce5c98c8fa19b1fbeed461fbda260))
+* Update Debricked CLI to 2.1.7 ([2d91e3c](https://github.com/fortify/github-action/commit/2d91e3c5c405391e5ee2cfe725a77b0ded38dcd0))
+* Update internal fcli version to honor GitHub proxy settings ([3b5cd8b](https://github.com/fortify/github-action/commit/3b5cd8bc279d25264d4afbc9a66f9b26144e68f9))
+* Update references from fortify-ps/github-action to fortify/github-action ([19d7892](https://github.com/fortify/github-action/commit/19d7892bbbd3bc1c1a1e11ba8dbb1c632c4dcfcf))
+* Update to fcli 2.7.1 to fix FoD job summary exception ([6e269a5](https://github.com/fortify/github-action/commit/6e269a5ff311a92d2fc4e83b6eb75c7863b8de69))
+* Use `github/codeql-action/upload-sarif@v3` to remove deprecation warning ([15bc159](https://github.com/fortify/github-action/commit/15bc159ac31679d18a88e6de1f1c2b4637236067))
+* Use proper branch names / versions for sub-action invocations ([d4eb955](https://github.com/fortify/github-action/commit/d4eb955478b251aa76d6c81a29d09db090387bde))
+
+
+### Miscellaneous Chores
+
+* release 1.0.0 ([f68df5c](https://github.com/fortify/github-action/commit/f68df5c9649fc61016ecdab8ce30f351d9090aef))
+* release 1.5.1 ([d4a449d](https://github.com/fortify/github-action/commit/d4a449d5f4e50f801d4dfc141d1674dabd8e3370))
+
 ## [1.5.0](https://github.com/fortify/github-action/compare/v1.4.0...v1.5.0) (2024-11-01)
 
 

action.yml

@@ -13,15 +13,15 @@ inputs:
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/fod-sast-scan@main
+    - uses: fortify/github-action/fod-sast-scan@v1.5.1
       if: inputs['sast-scan']=='true' && env.FOD_URL 
       env:
         DO_DEBRICKED_SCAN: ${{ inputs['debricked-sca-scan'] }}
-    - uses: fortify/github-action/sc-sast-scan@main
+    - uses: fortify/github-action/sc-sast-scan@v1.5.1
       if: inputs['sast-scan']=='true' && env.SSC_URL 
       env:
         DO_DEBRICKED_SCAN: ${{ inputs['debricked-sca-scan'] }}
-    - uses: fortify/github-action/ssc-debricked-scan@main
+    - uses: fortify/github-action/ssc-debricked-scan@v1.5.1
       if: inputs['sast-scan']=='false' && inputs['debricked-sca-scan']=='true' && env.SSC_URL 
 
 branding:

fod-export/action.yml

@@ -4,13 +4,13 @@ author: 'Fortify'
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/internal/set-fod-var-defaults@main
-    - uses: fortify/github-action/setup@main
+    - uses: fortify/github-action/internal/set-fod-var-defaults@v1.5.1
+    - uses: fortify/github-action/setup@v1.5.1
       with:
         export-path: false
         fcli: action-default
-    - uses: fortify/github-action/internal/fod-login@main
-    - uses: fortify/github-action/internal/run-script@main
+    - uses: fortify/github-action/internal/fod-login@v1.5.1
+    - uses: fortify/github-action/internal/run-script@v1.5.1
       with:
         script: export.sh
       env: 

fod-sast-scan/action.yml

@@ -4,21 +4,21 @@ author: 'Fortify'
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/internal/set-fod-var-defaults@main
-    - uses: fortify/github-action/setup@main
+    - uses: fortify/github-action/internal/set-fod-var-defaults@v1.5.1
+    - uses: fortify/github-action/setup@v1.5.1
       with:
         export-path: false
         fcli: action-default
-    - uses: fortify/github-action/internal/fod-login@main
-    - uses: fortify/github-action/package@main
-    - uses: fortify/github-action/internal/run-script@main
+    - uses: fortify/github-action/internal/fod-login@v1.5.1
+    - uses: fortify/github-action/package@v1.5.1
+    - uses: fortify/github-action/internal/run-script@v1.5.1
       with:
         script: fod-scan.sh
       env: 
         DO_SAST_SCAN: true # Not used for now
         GITHUB_TOKEN: ${{ github.token }}
     - if: env.DO_EXPORT == 'true'
-      uses: fortify/github-action/fod-export@main
+      uses: fortify/github-action/fod-export@v1.5.1
 
 branding:
   icon: 'shield'

internal/fod-login/action.yml

@@ -7,7 +7,7 @@ runs:
     # If not run before: check preconditions, run fcli login command, and run 
     # post-job fcli logout command.
     # Note that the calling action/workflow is responsible for installing fcli
-    - uses: fortify/github-action/internal/run-script@main
+    - uses: fortify/github-action/internal/run-script@v1.5.1
       if: ${{ !env._FOD_LOGGED_IN }}
       with:
         script: fod-login.sh

internal/run-script/action.yml

@@ -30,7 +30,7 @@ runs:
     - run: echo "TEMP_DIR=$(pwd)" >> $GITHUB_ENV
       shell: bash
       working-directory: ${{ runner.temp }}
-    - uses: fortify/github-action/internal/run-script/js@main
+    - uses: fortify/github-action/internal/run-script/js@v1.5.1
       with: 
         dir:    ${{ env._RUN_SCRIPTS_DIR }}
         script: ${{ inputs.script }}

internal/sc-sast-login/action.yml

@@ -11,7 +11,7 @@ runs:
     # If not run before: check preconditions, run fcli login command, and run 
     # post-job fcli logout command.
     # Note that the calling action/workflow is responsible for installing fcli
-    - uses: fortify/github-action/internal/run-script@main
+    - uses: fortify/github-action/internal/run-script@v1.5.1
       if: ${{ !env._SC_SAST_LOGGED_IN }}
       with:
         script: sc-sast-login.sh

internal/ssc-login/action.yml

@@ -7,7 +7,7 @@ runs:
     # If not run before: check preconditions, run fcli login command, and run 
     # post-job fcli logout command.
     # Note that the calling action/workflow is responsible for installing fcli
-    - uses: fortify/github-action/internal/run-script@main
+    - uses: fortify/github-action/internal/run-script@v1.5.1
       if: ${{ !env._SSC_LOGGED_IN }}
       with:
         script: ssc-login.sh

package/action.yml

@@ -4,12 +4,12 @@ author: 'Fortify'
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/internal/setup-java-for-sc-client@main
-    - uses: fortify/github-action/setup@main
+    - uses: fortify/github-action/internal/setup-java-for-sc-client@v1.5.1
+    - uses: fortify/github-action/setup@v1.5.1
       with:
         export-path: false
         sc-client: action-default
-    - uses: fortify/github-action/internal/run-script@main
+    - uses: fortify/github-action/internal/run-script@v1.5.1
       with:
         script: package.sh
 

sc-sast-scan/action.yml

@@ -4,23 +4,23 @@ author: 'Fortify'
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/internal/set-ssc-var-defaults@main
-    - uses: fortify/github-action/setup@main
+    - uses: fortify/github-action/internal/set-ssc-var-defaults@v1.5.1
+    - uses: fortify/github-action/setup@v1.5.1
       with:
         export-path: false
         fcli: action-default
         debricked-cli: ${{ env.DO_DEBRICKED_SCAN=='true' && 'action-default' || 'skip' }}
-    - uses: fortify/github-action/internal/ssc-login@main
-    - uses: fortify/github-action/internal/sc-sast-login@main
-    - uses: fortify/github-action/package@main
-    - uses: fortify/github-action/internal/run-script@main
+    - uses: fortify/github-action/internal/ssc-login@v1.5.1
+    - uses: fortify/github-action/internal/sc-sast-login@v1.5.1
+    - uses: fortify/github-action/package@v1.5.1
+    - uses: fortify/github-action/internal/run-script@v1.5.1
       with:
         script: sc-sast-and-debricked-scan.sh
       env: 
         DO_SC_SAST_SCAN: true
         GITHUB_TOKEN: ${{ github.token }}
     - if: env.DO_EXPORT == 'true'
-      uses: fortify/github-action/ssc-export@main
+      uses: fortify/github-action/ssc-export@v1.5.1
 
 branding:
   icon: 'shield'

ssc-debricked-scan/action.yml

@@ -4,14 +4,14 @@ author: 'Fortify'
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/internal/set-ssc-var-defaults@main
-    - uses: fortify/github-action/setup@main
+    - uses: fortify/github-action/internal/set-ssc-var-defaults@v1.5.1
+    - uses: fortify/github-action/setup@v1.5.1
       with:
         export-path: false
         fcli: action-default
         debricked-cli: action-default
-    - uses: fortify/github-action/internal/ssc-login@main
-    - uses: fortify/github-action/internal/run-script@main
+    - uses: fortify/github-action/internal/ssc-login@v1.5.1
+    - uses: fortify/github-action/internal/run-script@v1.5.1
       with:
         script: sc-sast-and-debricked-scan.sh
       env: 

ssc-export/action.yml

@@ -4,13 +4,13 @@ author: 'Fortify'
 runs:
   using: composite
   steps:
-    - uses: fortify/github-action/internal/set-ssc-var-defaults@main
-    - uses: fortify/github-action/setup@main
+    - uses: fortify/github-action/internal/set-ssc-var-defaults@v1.5.1
+    - uses: fortify/github-action/setup@v1.5.1
       with:
         export-path: false
         fcli: action-default
-    - uses: fortify/github-action/internal/ssc-login@main
-    - uses: fortify/github-action/internal/run-script@main
+    - uses: fortify/github-action/internal/ssc-login@v1.5.1
+    - uses: fortify/github-action/internal/run-script@v1.5.1
       with:
         script: export.sh
       env: 

version.txt

@@ -1 +1 @@
-1.5.0
+1.5.1