[pull] main from microsoft:main#15
Merged
Merged
Conversation
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
- Add v2 Defender CLI implementation (filesystem, image, model scans) - Restructure src/ and lib/ into v1/ and v2/ folders - Port defender-client and defender-installer from AzDevOps task-lib - Add job summary with SARIF parsing for GitHub Actions - Add self-hosted validation workflow for image scan testing - Add 70 new tests for v2 components Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
…eme) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
- Revert action.yml to v1 MSDO inputs (paths updated to lib/v1/) - Create v2/action.yml for Defender CLI v2 - Split self-hosted-validation into v1 and v2 workflows - v1 workflow uses ./ (root action.yml) - v2 workflow uses ./v2/ (v2 action.yml) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
- Policy variations: github, microsoft, none, azuredevops, mdc - Break on critical: image (vuln), model (vuln), fs - Debug logging: image with debug=true - PR summary toggle: image with pr-summary=false - Custom args: image with --defender-list-findings - Different images: nginx, pycontribs/ubuntu (vulnerable) - Defaults only: no inputs (verify all defaults) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Signed-off-by: Omer Bareket <34472645+omerb97@users.noreply.github.com>
Adding Defender CLI
…, run daily (#223) * fix(ci): rewrite probe — guardian init only, weekly CLI cache, parse .gdntool XML, run daily before breach monitor * fix(ci): probe triggers breach monitor after commit — remove schedule race condition * fix(ci): sort -V for guardian binary, semver sort for config dirs, per-tool regex fallback --------- Co-authored-by: Dima Birenbaum <dbirenbaum@microsoft.com>
…ispatch breach monitor (#224) * fix(ci): improve breach monitor accuracy — add ecosystems, fix advisory queries, versioned checks * feat(ci): add toolchain version probe workflow; breach monitor reads pinned versions * fix(ci): address PR review — fix NVD allowlist, empty-tools guard, version severity logic, CVE triage detail --------- Signed-off-by: Dima Birenbaum <dvlasenko86@gmail.com> Co-authored-by: Dima Birenbaum <dbirenbaum@microsoft.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
See Commits and Changes for more details.
Created by
pull[bot] (v2.0.0-alpha.4)
Can you help keep this open source service alive? 💖 Please sponsor : )