Conversation
… detection fix: fcli action framework: Fix output of `log.info` and `log.warn` instructions feat: `fcli sc-sast sensor list`: Add `--pool` option for listing sensors for a specific pool feat: `fcli sc-sast sensor list`: Add `--appversion` option for listing sensors for the pool to which the given application version is mapped feat: `fcli sc-sast sensor list`: Add `--latest-only` option to only return the latest sensor version feat: `fcli sc-sast sensor list`: Add `compatibleClientVersion` to output feat: SSC `package` action: Auto-detect compatible ScanCentral Client version for packaging (if no explicit version configured by user) feat: `fcli tool env init`: Produce output through fcli output framework to support standard fcli output (format) options and allow other fcli commands or external tools to programmatically process the output fix: `fcli tool * register`: Fix registration of unknown tool versions from user-provided path fix: `fcli tool env init`: Fix registration of unknown tool versions from user-provided path feat: `fcli tool env init`: Support `fcli:self` and `fcli:bootstrapped` tool specifiers to register current (bootstrapped) fcli path (mostly meant for testing purposes) feat: `github-*-report` actions: Add `--publish` option to publish reports directly to GitHub (only available when running in GitHub Actions workflow) feat: `gitlab-*-report` actions: Add `--publish` option to publish reports directly to GitLab (only available when running in GitLab pipeline) feat: `bitbucket-*-report` actions: Add `--publish` option to publish reports directly to BitBucket (only available when running in BitBucket pipeline) feat: fcli action framework: Add CI-specific SpEL functions to allow fcli actions to auto-detect current CI system, upload security reports, add PR/MR comments, ... feat: `fcli license ncd-report create`: Make `projects` configuration setting optional, iterating over all projects in organization by default
fix: `ci` action: Skip PR comment if enabled but current run is not for a PR chore: Minor refactoring for simplification
chore: Update/restructure Copilot instructions feat: fcli action framework: `out.write` instruction now automatically creates non-existing parent directories feat: fcli action framework: Add `docRenderer().*` SpEL functions (internal use only) fix: fcli action framework: `#join` SpEL function: Improve support for multiple newline/tab characters in separator docs: Move `fcli-core/fcli-action/.../build-time/ci-envvars.yaml` to `fcli-core/fcli-app/.../buid-time/ci-doc.yaml` feat: Documentation: Add comprehensive fcli-based CI integration documentation for GitHub, GitLab, and Azure DevOps feat: Documentation: Add simplified installation & upgrade instructions based on `@fortify/setup` NPM component
…o be passed based on SAST scan settings
… all step instructions
…h `do` instructions for consistency
…` and `log.*` instructions
feat: FoD `setup-release` action: Add `--override-sast-settings` CLI option feat: FoD `ci` action: Add `OVERRIDE_SAST_SETTINGS` environment variable to override existing scan settings feat: FoD `ci` action: Add `COPY_FROM_RELEASE` convenience environment variable feat: FoD `ci` action: Add `SAST_ASSESSMENT_TYPE` convenience environment variable feat: FoD `ci` action: Add `DO_AVIATOR_AUDIT` convenience environment variable feat: FoD `ci` action: Add `DO_SCA_SCAN` convenience environment variable
…, `gitlab` commands
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| private static boolean checkCondition(boolean condition, String msg, boolean failOnError) { | ||
| if (condition) { | ||
| if (failOnError) { | ||
| throw new FcliSimpleException(msg); |
Check failure
Code scanning / Fortify on Demand
Privacy Violation Critical
| if (failOnError) { | ||
| throw new FcliSimpleException(msg); | ||
| } else { | ||
| LOG.debug(msg); |
Check failure
Code scanning / Fortify on Demand
Privacy Violation Critical
| throw new FcliTechnicalException(msg, e); | ||
| } else { | ||
| LOG.info(msg, e); | ||
| LOG.warn(msg, e); |
Check failure
Code scanning / Fortify on Demand
Privacy Violation Critical
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.