Merge dev to main
#817
Merged
Merge dev to main
#817
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Collaborator
ianpittwood
commented
Jul 22, 2024
ianpittwood
commented
- Upgrade VS Code extensions.
- Implement Snyk CLI tool scanning on all images.
- Add Package Manager bash completions to Package Manager image.
- Fix a potential race condition for Workbench installations in service images.
- Fix a potential vulnerability for Workbench certificates in images.
- Implement usage of shared scripts in WGCW.
- Manage TinyTeX installations via Quarto instead of manual installations.
[email protected] -> [email protected] adding posit.shiny extension
Upgrade VS Code Extensions
* Add script for scanning bake artifacts with Snyk * Add sarif output to test command defaults * Add default options for sbom * Implement Snyk scan in CI * Add SNYK_TOKEN as secret and pass to composite action * Convert snyk scan to non-failing test * Fix sarif upload * Exclude base image vulnerabilities * Make project-name broadest tag Limit severity to HIGH or greater Utilize .snyk policy files where applicable * Set up ignores and report current vulnerabilities upstream * Run snyk code test as part of linting * Quote SNYK_ORG * Rever snyk code test changes * Pass SNYK_ORG to action * Fix snyk_bake_artifacts.py docstring * Remove cert copy
add rspm bash completions to the image
* Implement shared scripts in WGCW image * Wrap python install with apt update/clean
* Manage TinyTeX installation with Quarto Add CLI options to `install_quarto.sh` to install, update, add to path, or uninstall TinyTeX Add an option to use Workbench's preinstalled Quarto for TinyTeX management * Add TinyTeX test to Goss Fix usage error * Auto-detect Workbench installed Quarto and use if present * Update product/base/scripts/ubuntu/install_quarto.sh Co-authored-by: Benjamin R. J. Schwedler <[email protected]> * Move Quarto and TinyTeX install to after workbench install in WGCW --------- Co-authored-by: Benjamin R. J. Schwedler <[email protected]>
ianpittwood
requested review from
cm421,
melissa-barca,
a team,
colearendt,
bschwedler and
costrouc
as code owners
ianpittwood
requested review from
jonyoder and
jmwoliver
and removed request for
a team
bschwedler
approved these changes
Jul 22, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.