César Arroba
|
a679865cce
|
ci: always run container and dependency vulnerability scans on PRs (#11582)
|
2026-06-15 10:38:28 +02:00 |
|
César Arroba
|
15bfa39b23
|
ci: fail PR checks on critical container image and dependency vulnerabilities (#11580)
|
2026-06-15 09:57:23 +02:00 |
|
dependabot[bot]
|
c660b35ed6
|
chore(deps): bump step-security/harden-runner from 2.19.1 to 2.19.3 (#11267)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2026-05-21 09:33:57 +02:00 |
|
dependabot[bot]
|
f210c26c2f
|
chore(deps): bump tj-actions/changed-files from 47.0.5 to 47.0.6 (#10963)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2026-05-21 09:09:43 +02:00 |
|
dependabot[bot]
|
e7fbc8b391
|
chore(deps): bump docker/build-push-action from 7.0.0 to 7.1.0 (#10738)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2026-05-21 08:54:03 +02:00 |
|
dependabot[bot]
|
6ef70484c7
|
chore(deps): bump step-security/harden-runner from 2.16.0 to 2.19.1 (#10953)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2026-05-21 08:32:05 +02:00 |
|
Pedro Martín
|
5cbe473eb9
|
chore(stepsecurity): add missing endpoints (#11223)
|
2026-05-19 16:07:33 +02:00 |
|
César Arroba
|
98277689f5
|
ci: reduce GitHub Actions consumption across CI workflows (#11007)
|
2026-05-05 17:08:34 +02:00 |
|
stepsecurity-app[bot]
|
96e7d6cb3a
|
feat(security): security best practices from StepSecurity (#10682)
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
Co-authored-by: stepsecurity-app[bot] <188008098+stepsecurity-app[bot]@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
|
2026-04-14 15:13:12 +02:00 |
|
dependabot[bot]
|
c21cf0ac20
|
chore(deps): bump tj-actions/changed-files from 47.0.4 to 47.0.5 (#10552)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2026-04-09 10:19:28 +02:00 |
|
dependabot[bot]
|
def59a8cc2
|
chore(deps): bump docker/setup-buildx-action from 3.12.0 to 4.0.0 (#10556)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2026-04-09 10:16:00 +02:00 |
|
dependabot[bot]
|
1bfed74db5
|
chore(deps): bump docker/build-push-action from 6.19.2 to 7.0.0 (#10557)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2026-04-09 10:14:27 +02:00 |
|
Josema Camacho
|
cc197ea901
|
feat(api): add periodic cleanup of stale Attack Paths scans with dead-worker detection (#10387)
|
2026-03-27 14:17:22 +01:00 |
|
Pepe Fagoaga
|
2b5d015e09
|
feat(security): add missing endpoints to allowlist (#10495)
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
|
2026-03-27 13:53:52 +01:00 |
|
Pepe Fagoaga
|
417be55604
|
feat(security): block mode for hardened runners (#10482)
|
2026-03-27 13:08:59 +01:00 |
|
stepsecurity-app[bot]
|
716c130140
|
feat(security): security best practices from StepSecurity (#10480)
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
Co-authored-by: stepsecurity-app[bot] <188008098+stepsecurity-app[bot]@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
|
2026-03-26 13:58:19 +01:00 |
|
dependabot[bot]
|
41a7b19c7d
|
build(deps): bump actions/checkout from 6.0.1 to 6.0.2 (#9936)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2026-03-13 09:46:40 +01:00 |
|
dependabot[bot]
|
f55e87d659
|
build(deps): bump tj-actions/changed-files from 47.0.1 to 47.0.4 (#10203)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2026-03-13 09:40:31 +01:00 |
|
dependabot[bot]
|
a6d47bdb2b
|
build(deps): bump docker/build-push-action from 6.18.0 to 6.19.2 (#10201)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2026-03-13 09:39:43 +01:00 |
|
Pepe Fagoaga
|
8af9b333c9
|
ci: restore persist credentials when no output is generated (#10211)
|
2026-03-02 09:14:02 +01:00 |
|
Andoni Alonso
|
8be218b29f
|
fix(ci): harden GitHub Actions workflows against expression injection (#10200)
|
2026-03-01 19:58:43 +01:00 |
|
Alan Buscaglia
|
c8fab497fd
|
feat(skills): sync AGENTS.md to AI-specific formats (#9751)
Co-authored-by: Alan-TheGentleman <alan@thegentleman.dev>
Co-authored-by: pedrooot <pedromarting3@gmail.com>
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
|
2026-01-13 11:44:44 +01:00 |
|
dependabot[bot]
|
73375ee289
|
build(deps): bump tj-actions/changed-files from 47.0.0 to 47.0.1 (#9711)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
|
2026-01-08 13:30:41 +01:00 |
|
dependabot[bot]
|
8b2dea52fa
|
build(deps): bump docker/setup-buildx-action from 3.11.1 to 3.12.0 (#9709)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2026-01-08 12:52:42 +01:00 |
|
dependabot[bot]
|
3cf7f7845e
|
build(deps): bump actions/checkout from 5.0.0 to 6.0.0 (#9397)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-12-23 09:20:19 +01:00 |
|
César Arroba
|
00063c57de
|
chore(github): fix container checks workflows (#9556)
|
2025-12-15 13:06:18 +01:00 |
|
César Arroba
|
2341b5bc7d
|
chore(github): check containers workflow only for prowler (#9555)
|
2025-12-15 12:47:36 +01:00 |
|
César Arroba
|
4398b00801
|
chore(github): use QEMU to build ARM images if repository is not prowler (#9547)
|
2025-12-15 11:23:39 +01:00 |
|
César Arroba
|
a622b9d965
|
chore(github): check and scan arm builds (#9450)
|
2025-12-04 10:50:39 +01:00 |
|
César Arroba
|
166ab1d2c1
|
chore(github): fix actions paths (#9154)
|
2025-11-04 12:27:34 +01:00 |
|
César Arroba
|
2c28d74598
|
chore(github): separate api pr jobs in different actions (#9078)
|
2025-10-30 10:02:53 +01:00 |
|