Skip to content

Updating to common GitHub Action 1.0.5 #1888

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
nikhil2611 wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Updating to common GitHub Action 1.0.5 #1888

nikhil2611 wants to merge 1 commit into from
+3 −2

Conversation

@nikhil2611
Copy link
Contributor

@nikhil2611 nikhil2611 commented Sep 16, 2025

This pull request updates the CI workflow configuration to enable additional security scanning and improve language specification for analysis. The most significant changes are related to enabling BlackDuck Polaris scans and clarifying the language used for build and analysis.

Description

This pull request updates the CI workflow configuration in .github/workflows/ci-main-pull-request-stub.yml to improve security scanning and ensure correct build settings. The most important changes are:

Security and scanning improvements:

  • Enabled BlackDuck Polaris SAST and SCA scans by setting perform-blackduck-polaris to true to ensure security checks are performed during CI runs.

Build and analysis settings:

  • Set the language parameter to 'ruby' to specify the project's primary language for build and SonarQube analysis.
  • Updated the STUB_VERSION environment variable from "1.0.4" to "1.0.5" to reflect the latest stub version.

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to change)
  • Chore (non-breaking change that does not add functionality or fix an issue)

Checklist:

  • I have read the CONTRIBUTING document.
  • I have run the pre-merge tests locally and they pass.
  • I have updated the documentation accordingly.
  • I have added tests to cover my changes.
  • If Gemfile.lock has changed, I have used --conservative to do it and included the full output in the Description above.
  • All new and existing tests passed.
  • All commits have been signed-off for the Developer Certificate of Origin.

@nikhil2611
updating to common GitHub Action 1.0.5
577a742 
Signed-off-by: nikhil2611 <nikhilgupta2102@gmail.com>
@nikhil2611 nikhil2611 requested review from a team and jaymzh as code owners September 16, 2025 08:54
@sonarqubecloud
Copy link

sonarqubecloud bot commented Sep 16, 2025

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@nikhil2611 nikhil2611 changed the title updating to common GitHub Action 1.0.5 Updating to common GitHub Action 1.0.5 Sep 16, 2025
@jaymzh
Copy link
Collaborator

jaymzh commented Sep 16, 2025

@nikhil2611 - updated tests are failing.

@jaymzh jaymzh added the Status: Waiting on Contributor A pull request that has unresolved requested actions from the author. label Sep 16, 2025
@nikhil2611
Copy link
Contributor Author

nikhil2611 commented Sep 17, 2025

@nikhil2611 - updated tests are failing.

@jaymzh Yeah its failing with FAILURE_ACCURACY_NOT_MET and we are trying to fix that.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jaymzh jaymzh Awaiting requested review from jaymzh jaymzh is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

Status: Waiting on Contributor A pull request that has unresolved requested actions from the author.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@nikhil2611 @jaymzh