From b44c337b8b36a2ee26910ca3d05becbd47ebed4c Mon Sep 17 00:00:00 2001 From: JTT <74948724+j0tr@users.noreply.github.com> Date: Tue, 18 Oct 2022 16:12:07 -0700 Subject: [PATCH 1/3] Update README.md Updating supported IaC files --- README.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index 7fd7169..6585030 100644 --- a/README.md +++ b/README.md @@ -47,8 +47,8 @@ steps: | [BinSkim](https://github.com/Microsoft/binskim) | binary - Windows, ELF | [MIT License](https://github.com/microsoft/binskim/blob/main/LICENSE) | | CredScan | code, artifacts | - | | [ESlint](https://github.com/eslint/eslint) | JavaScript | [MIT License](https://github.com/eslint/eslint/blob/main/LICENSE) | -| [Template Analyzer](https://github.com/Azure/template-analyzer) | Infrastructure-as-code (IaC), ARM templates | [MIT License](https://github.com/Azure/template-analyzer/blob/main/LICENSE.txt) | -| [Terrascan](https://github.com/accurics/terrascan) | Infrastructure-as-Code (IaC), Terraform (HCL2), Kubernetes (JSON/YAML), Helm v3, Kustomize, Dockerfiles | [Apache License 2.0](https://github.com/accurics/terrascan/blob/master/LICENSE) | +| [Template Analyzer](https://github.com/Azure/template-analyzer) | Infrastructure-as-code (IaC), ARM templates, Bicep files | [MIT License](https://github.com/Azure/template-analyzer/blob/main/LICENSE.txt) | +| [Terrascan](https://github.com/accurics/terrascan) | Infrastructure-as-Code (IaC), Terraform (HCL2), Kubernetes (JSON/YAML), Helm v3, Kustomize, Dockerfiles, CloudFormation | [Apache License 2.0](https://github.com/accurics/terrascan/blob/master/LICENSE) | | [Trivy](https://github.com/aquasecurity/trivy) | Container Images, Infrastructure as Code (Iac) | [Apache License 2.0](https://github.com/aquasecurity/trivy/blob/main/LICENSE) | ## Contributing From fc8389c90d97732459a5135f3402dfa67ca92ed0 Mon Sep 17 00:00:00 2001 From: David Knise Date: Thu, 23 Feb 2023 10:24:40 -0800 Subject: [PATCH 2/3] Add node16 support --- src/MicrosoftSecurityDevOps/v1/task.json | 3 +++ 1 file changed, 3 insertions(+) diff --git a/src/MicrosoftSecurityDevOps/v1/task.json b/src/MicrosoftSecurityDevOps/v1/task.json index 2034eaf..036b6b2 100644 --- a/src/MicrosoftSecurityDevOps/v1/task.json +++ b/src/MicrosoftSecurityDevOps/v1/task.json @@ -98,6 +98,9 @@ ], "instanceNameFormat": "Run Microsoft Defender for DevOps", "execution": { + "Node16": { + "target": "msdo.js" + }, "Node10": { "target": "msdo.js" }, From cf100edd226b3ec913fcb1a1a65f17cf0b0b540b Mon Sep 17 00:00:00 2001 From: David Knise Date: Thu, 23 Feb 2023 10:26:48 -0800 Subject: [PATCH 3/3] DevOps Release v1.7.0 --- CHANGELOG.md | 4 ++++ README.md | 5 ----- src/MicrosoftSecurityDevOps/v1/task.json | 2 +- src/extension-manifest-debug.json | 2 +- src/extension-manifest.json | 2 +- 5 files changed, 7 insertions(+), 8 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index c0195bf..88476a6 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -3,6 +3,10 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](http://keepachangelog.com/) and this project adheres to [Semantic Versioning](http://semver.org/). +## v1.7.0 - 02/23/2023 +### Added +- Node16 launcher support + ## v1.5.1 - 08/29/2022 ### Changed - Updated the extension and MicrosoftSecurityDevOps build task icon \ No newline at end of file diff --git a/README.md b/README.md index 6585030..2a91e4c 100644 --- a/README.md +++ b/README.md @@ -13,16 +13,11 @@ An extension for Azure DevOps that contributes a build task to run the [Microsof ## Dependencies * The `MicrosoftSecurityDevOps` build task depends on [.NET 6](https://dotnet.microsoft.com/en-us/download/dotnet/6.0). -* The CredScan analyzer depends on [.NET 3.1](https://dotnet.microsoft.com/en-us/download/dotnet/3.1). Microsoft-hosted build agents ship with an included list of software. To see if your agent image comes with these pre-installed, [see here](https://learn.microsoft.com/en-us/azure/devops/pipelines/agents/hosted?view=azure-devops&tabs=yaml#software). To install these dependencies at runtime, run the following tasks before the `MicrosoftSecurityDevOps` task. ```yaml -- task: UseDotNet@2 - displayName: 'Use dotnet 3.1' - inputs: - version: 3.1.x - task: UseDotNet@2 displayName: 'Use dotnet 6.0' inputs: diff --git a/src/MicrosoftSecurityDevOps/v1/task.json b/src/MicrosoftSecurityDevOps/v1/task.json index 036b6b2..b916c12 100644 --- a/src/MicrosoftSecurityDevOps/v1/task.json +++ b/src/MicrosoftSecurityDevOps/v1/task.json @@ -11,7 +11,7 @@ "author": "Microsoft Corporation", "version": { "Major": 1, - "Minor": 6, + "Minor": 7, "Patch": 0 }, "preview": true, diff --git a/src/extension-manifest-debug.json b/src/extension-manifest-debug.json index 164a24b..01e2032 100644 --- a/src/extension-manifest-debug.json +++ b/src/extension-manifest-debug.json @@ -2,7 +2,7 @@ "manifestVersion": 1, "id": "microsoft-security-devops-azdevops-debug", "name": "Microsoft Security DevOps (Debug)", - "version": "1.6.0.0", + "version": "1.7.0.0", "publisher": "ms-securitydevops", "description": "Build tasks for performing security analysis.", "public": false, diff --git a/src/extension-manifest.json b/src/extension-manifest.json index 46373be..32d2574 100644 --- a/src/extension-manifest.json +++ b/src/extension-manifest.json @@ -2,7 +2,7 @@ "manifestVersion": 1, "id": "microsoft-security-devops-azdevops", "name": "Microsoft Security DevOps", - "version": "1.6.0", + "version": "1.7.0", "publisher": "ms-securitydevops", "description": "Build tasks for performing security analysis.", "public": true,