search

advanced-security / maven-dependency-submission-action

GitHub Action for submitting Maven dependencies
MIT License
48 stars 24 forks source link

update detector name and url #46

Closed zkarpinski closed 11 months ago

zkarpinski commented 1 year ago

Update detector name and url to match repo and action.

felickz commented 1 year ago

Had the same thought but might require to go back and cleanup previous snapshots to avoid old data in the graph- there does not appear to be an API to support this via self service today.

https://docs.github.com/en/rest/dependency-graph/dependency-submission?apiVersion=2022-11-28#about-dependency-submissions

You can submit multiple sets of dependencies to be included in your dependency graph. The REST API uses the job.correlator property and the detector.name category of the snapshot to ensure the latest submissions for each workflow get shown. The correlator property itself is the primary field you will use to keep independent submissions distinct. An example correlator could be a simple combination of two variables available in actions runs: .

peter-murray commented 1 year ago

I will change this in the next major release, for now I have put in the necessary redirect on the URL that is presents itself as for the link to be valid and redirect to this repository.