Skip to content

Migration deploy of final code #18

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 14 commits into from
Nov 1, 2025
Merged

Migration deploy of final code #18

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
fa33b4f
Updates for phase handling
jmgasper Oct 26, 2025
fe28c2b
Ignore checkpoint submissions in approval phase
jmgasper Oct 27, 2025
d2590ce
Fixes for end of challenge generating review summations, also used fo…
jmgasper Oct 27, 2025
400bbcb
Handling of end of challenge score summations
jmgasper Oct 28, 2025
19ff166
Build fix
jmgasper Oct 28, 2025
07bc173
Better logging around end-of-challenge calculations
jmgasper Oct 28, 2025
91e3c5a
Failed approval phase handling
jmgasper Oct 28, 2025
fd0dd8c
Add Trivy scanner workflow for vulnerability scanning
kkartunov Oct 28, 2025
9e8e2e3
Fallback handling if review summation creation doesn't work
jmgasper Oct 28, 2025
dddb6ec
Zero submission / post-mortem handling
jmgasper Oct 28, 2025
c515121
Better handling of approval phases
jmgasper Oct 29, 2025
c483939
Create review opportunities when challenges go active, if required
jmgasper Oct 30, 2025
ec9074e
Better iterative review handling for TG Task
jmgasper Oct 30, 2025
2f9c077
Better handling of failed approval and checkpoint screening and chekc…
jmgasper Oct 30, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
34 changes: 34 additions & 0 deletions .github/workflows/trivy.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,34 @@
name: Trivy Scanner

permissions:
contents: read
security-events: write
on:
push:
branches:
- main
- dev
pull_request:
jobs:
trivy-scan:
name: Use Trivy
runs-on: ubuntu-24.04
Copy link

@github-actions github-actions bot Nov 1, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[⚠️ maintainability]
Consider using a more stable version of Ubuntu, such as ubuntu-latest, to ensure compatibility and reduce maintenance overhead when newer versions are released.

steps:
- name: Checkout code
uses: actions/checkout@v4

- name: Run Trivy scanner in repo mode
uses: aquasecurity/trivy-action@0.33.1
with:
scan-type: "fs"
ignore-unfixed: true
format: "sarif"
output: "trivy-results.sarif"
severity: "CRITICAL,HIGH,UNKNOWN"
Copy link

@github-actions github-actions bot Nov 1, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[💡 readability]
Including UNKNOWN in the severity list might result in false positives or less actionable results. Consider reviewing if this level is necessary for your use case.

scanners: vuln,secret,misconfig,license
github-pat: ${{ secrets.GITHUB_TOKEN }}

- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: "trivy-results.sarif"
Loading