consul-k8s
consul-k8s copied to clipboard
hashicorp
Backport of [NET-2420] security: re-enable security scan release block into release/1.3.x
Backport
This PR is auto-generated from #3628 to be assessed for backporting due to the inclusion of the label backport/1.3.x.
:rotating_light:
Warning automatic cherry-pick of commits failed. If the first commit failed, you will see a blank no-op commit below. If at least one commit succeeded, you will see the cherry-picked commits up to, not including, the commit where the merge conflict occurred.
The person who merged in the original PR is: @zalimeni This person should manually cherry-pick the original PR into a new backport PR, and close this one when the manual backport PR is merged in.
merge conflict error: POST https://api.github.com/repos/hashicorp/consul-k8s/merges: 409 Merge conflict []
The below text is copied from the body of the original PR.
Follow-up to https://github.com/hashicorp/consul-k8s/pull/3625 to re-enable scans.
Changes proposed in this PR
- Re-enable release-blocking security scans, previously disabled in:
- https://github.com/hashicorp/consul-k8s/pull/1974
- https://github.com/hashicorp/consul-k8s/pull/1160
- Add scans on PR and merge to
mainandrelease/**
Scanner config is intentionally aligned w/ changes made in https://github.com/hashicorp/consul/pull/19978 for consistency.
How I've tested this PR
CI continues to pass, scan results are working as expected.
How I expect reviewers to test this PR
👀
Checklist
- [ ] Tests added
- [ ] CHANGELOG entry added
Overview of commits
- 18ab5b1318bd423844873f06bf7fd0f715fe5049 - 344945861fcf813131d07951cc2292f95eb6a6ee - 22343e38f35279da42c6d879b55f3422f0dc3489 - 0ffcb83c82143e02ab3fdb69cdf44dd2907d255c - ae2348acb01648e8c123f97b76c1ea6e62297658 - c950489f8c1c2bec665673db10d240860335cf10 - 57a10bcef95eb72f15df7c0be64de787f01c661a - 8e9f1e62898389f9fe27148262243d94a4523b89 - 8fda3bbe855d92db3a374dec06ff6dfe0afb7d18
