Skip to content

Commit 4eec7aa

Browse files
authored
chore: Migrate RL Scanner to usable actions (#888)
1 parent e7dd331 commit 4eec7aa

4 files changed

Lines changed: 18 additions & 81 deletions

File tree

.github/actions/rl-scanner/action.yml

Lines changed: 0 additions & 71 deletions
This file was deleted.

.github/workflows/release.yml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -24,9 +24,11 @@ jobs:
2424
RLSECURE_LICENSE: ${{ secrets.RLSECURE_LICENSE }}
2525
RLSECURE_SITE_KEY: ${{ secrets.RLSECURE_SITE_KEY }}
2626
SIGNAL_HANDLER_TOKEN: ${{ secrets.SIGNAL_HANDLER_TOKEN }}
27+
SIGNAL_HANDLER_DOMAIN: ${{ secrets.SIGNAL_HANDLER_DOMAIN }}
2728
PRODSEC_TOOLS_USER: ${{ secrets.PRODSEC_TOOLS_USER }}
2829
PRODSEC_TOOLS_TOKEN: ${{ secrets.PRODSEC_TOOLS_TOKEN }}
2930
PRODSEC_TOOLS_ARN: ${{ secrets.PRODSEC_TOOLS_ARN }}
31+
PRODSEC_PYTHON_TOOLS_REPO: ${{ secrets.PRODSEC_PYTHON_TOOLS_REPO }}
3032
release:
3133
uses: ./.github/workflows/java-release.yml
3234
needs: rl-scanner

.github/workflows/rl-scanner.yml

Lines changed: 13 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -16,18 +16,22 @@ on:
1616
required: true
1717
SIGNAL_HANDLER_TOKEN:
1818
required: true
19+
SIGNAL_HANDLER_DOMAIN:
20+
required: true
1921
PRODSEC_TOOLS_USER:
2022
required: true
2123
PRODSEC_TOOLS_TOKEN:
2224
required: true
2325
PRODSEC_TOOLS_ARN:
2426
required: true
27+
PRODSEC_PYTHON_TOOLS_REPO:
28+
required: true
2529
jobs:
2630
checkout-build-scan-only:
2731
if: github.event_name == 'workflow_dispatch' || (github.event_name == 'pull_request' && github.event.pull_request.merged && startsWith(github.event.pull_request.head.ref, 'release/'))
2832
runs-on: ubuntu-latest
2933
outputs:
30-
scan-status: ${{ steps.rl-scan-conclusion.outcome }}
34+
scan-status: ${{ steps.rl-scan-conclusion.outputs.scan-status }}
3135

3236
steps:
3337
- name: Checkout code
@@ -54,17 +58,19 @@ jobs:
5458
5559
- name: Run RL Scanner
5660
id: rl-scan-conclusion
57-
uses: ./.github/actions/rl-scanner
61+
uses: auth0/devsecops-tooling/.github/actions/rl-scan@main
5862
with:
59-
artifact-path: "$(pwd)/${{ inputs.artifact-name }}"
60-
version: "${{ steps.get_version.outputs.version }}"
61-
env:
63+
artifact-name: ${{ github.event.repository.name }}
64+
artifact-path: "${{ github.workspace }}/${{ inputs.artifact-name }}"
65+
version: ${{ steps.get_version.outputs.version }}
6266
RLSECURE_LICENSE: ${{ secrets.RLSECURE_LICENSE }}
6367
RLSECURE_SITE_KEY: ${{ secrets.RLSECURE_SITE_KEY }}
6468
SIGNAL_HANDLER_TOKEN: ${{ secrets.SIGNAL_HANDLER_TOKEN }}
69+
SIGNAL_HANDLER_DOMAIN: ${{ secrets.SIGNAL_HANDLER_DOMAIN }}
70+
PRODSEC_TOOLS_ARN: ${{ secrets.PRODSEC_TOOLS_ARN }}
6571
PRODSEC_TOOLS_USER: ${{ secrets.PRODSEC_TOOLS_USER }}
6672
PRODSEC_TOOLS_TOKEN: ${{ secrets.PRODSEC_TOOLS_TOKEN }}
67-
PRODSEC_TOOLS_ARN: ${{ secrets.PRODSEC_TOOLS_ARN }}
73+
PRODSEC_PYTHON_TOOLS_REPO: ${{ secrets.PRODSEC_PYTHON_TOOLS_REPO }}
6874

6975
- name: Output scan result
70-
run: echo "scan-status=${{ steps.rl-scan-conclusion.outcome }}" >> $GITHUB_ENV
76+
run: echo "scan-status=${{ steps.rl-scan-conclusion.outputs.scan-status }}" >> $GITHUB_ENV

build.gradle

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -22,9 +22,9 @@ logger.lifecycle("Using version ${version} for ${name} group $group")
2222
dependencies {
2323
// Core dependencies
2424
api 'com.squareup.okhttp3:okhttp:5.2.1'
25-
api 'com.fasterxml.jackson.core:jackson-databind:2.21.2'
26-
api 'com.fasterxml.jackson.datatype:jackson-datatype-jdk8:2.21.2'
27-
api 'com.fasterxml.jackson.datatype:jackson-datatype-jsr310:2.21.2'
25+
api 'com.fasterxml.jackson.core:jackson-databind:2.21.4'
26+
api 'com.fasterxml.jackson.datatype:jackson-datatype-jdk8:2.21.4'
27+
api 'com.fasterxml.jackson.datatype:jackson-datatype-jsr310:2.21.4'
2828

2929
// Dependencies for legacy management code from auth0-real
3030
implementation 'com.squareup.okhttp3:logging-interceptor:5.2.1'

0 commit comments

Comments
 (0)