Replace verification repository #44
Description
In order to verify changes, we have a verification GitHub action1 which scans a project for each detector for each pull request. This allows us to easily see if we are detecting more or less components.
Currently, this workflow uses a private repository which uses git submodules to point to specific commits in open source projects. Instead, we should checkout the open source projects to the specific commit required during our GitHub Actions workflow.
Current repos in our verification suite include:
- flutter/flutter@48ba488d3
- OpenIntelWireless/HeliPort@bbcfb72
- helm/helm@1b0a26ff
- Workday/warp-core@3581e25
- vtsynergy/SeqInCloud@441480d
- andybrodie/xml2csv@dd0ca9b
- apache/maven@5fbe40a33
- expressjs/express@5596222f
- Azure/azure-sdk-for-net@1bf85a0ae2
- https://www.nuget.org/packages/Moq/4.14.5
- tensorflow/recommenders@09309e1 (with frozen lockfile)
- pnpm/pnpm@393293900
- PyCQA/isort@44e3b5d
- QueueClassic/queue_classic@1e40ddd
- https://github.com/deptofdefense/HAS-Qualifier-Challenges/tree/master/spacerace/kubos
- microsoft/snocat@d453860
- sharkdp/bat@e4df564
- rust-lang/cargo@e4b65bdc8
- electron/electron@e6fbbf432
- microsoft/TypeScript-Website@0cf75e2