From fded779a785e4ba88937c0d8f0fa8227dc3631c6 Mon Sep 17 00:00:00 2001 From: Atish Jadhav Date: Wed, 8 Jul 2026 19:24:08 +0530 Subject: [PATCH 1/8] Update .npmrc with new registry and auth settings --- .npmrc | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/.npmrc b/.npmrc index 453be701..9605ea89 100644 --- a/.npmrc +++ b/.npmrc @@ -1,3 +1,5 @@ # Default registry for most packages registry=https://npm.echohq.com/ -ignore-scripts=true \ No newline at end of file +//packages.echohq.com/:_authToken= +always-auth=true +ignore-scripts=true From 38557aca619e69f445f41c8e8594d133ee6c975f Mon Sep 17 00:00:00 2001 From: Atish Jadhav Date: Wed, 8 Jul 2026 19:24:54 +0530 Subject: [PATCH 2/8] Modify CI workflow for echohq registry integration Updated CI workflow to use echohq registry and added authentication steps. --- .github/workflows/ci.yml | 28 ++++++++++++++++++++++------ 1 file changed, 22 insertions(+), 6 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 4f0b3348..13753f79 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -1,9 +1,9 @@ name: AST Javascript wrapper CI - + on: [ pull_request ] permissions: contents: read - + jobs: unit-tests: runs-on: cx-public-ubuntu-x64 @@ -23,10 +23,18 @@ jobs: uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4.0.2 with: node-version: 22.11.0 - registry-url: https://npm.pkg.github.com/ + registry-url: https://npm.echohq.com/ + - name: Configure echohq auth (both hosts) + env: + ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} + run: | + npm config set //npm.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" + npm config set //packages.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" - run: npm ci --ignore-scripts + env: + ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} - name: Run Unit Tests - + run: npm run test:unit integration-tests: runs-on: cx-public-ubuntu-x64 @@ -46,12 +54,20 @@ jobs: uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4.0.2 with: node-version: 22.11.0 - registry-url: https://npm.pkg.github.com/ + registry-url: https://npm.echohq.com/ + - name: Configure echohq auth (both hosts) + env: + ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} + run: | + npm config set //npm.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" + npm config set //packages.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" - run: npm ci --ignore-scripts + env: + ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} - name: Code Linting run: npm run lint - run: npm run build --if-present - + - name: Run tests env: CX_CLIENT_ID: ${{ secrets.CX_CLIENT_ID}} From 8a362e7b6dbe0275868fd7554f99458a23dac044 Mon Sep 17 00:00:00 2001 From: Atish Jadhav Date: Wed, 8 Jul 2026 19:25:59 +0530 Subject: [PATCH 3/8] Refactor release.yml for clarity and consistency Removed unnecessary whitespace and updated comments in the release workflow. --- .github/workflows/release.yml | 48 +++++++++++++++++++---------------- 1 file changed, 26 insertions(+), 22 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 5eabbfd1..50796300 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -1,5 +1,5 @@ name: Javascript Wrapper Release - + on: workflow_call: inputs: @@ -43,10 +43,10 @@ on: required: false default: true type: boolean - + permissions: contents: read - + jobs: delete: permissions: @@ -73,11 +73,11 @@ jobs: - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: fetch-depth: 0 - + - name: Verify single lockfile (Step 0 - Supply Chain Policy) run: | if [ -f yarn.lock ] && [ -f package-lock.json ]; then - echo "❌ ERROR: Both yarn.lock and package-lock.json found. Policy requires exactly ONE package manager. Allowed: npm + package-lock.json OR Yarn + yarn.lock" + "❌ ERROR: Both yarn.lock and package-lock.json found. Policy requires exactly ONE package manager. Allowed: npm + package-lock.json OR Yarn + yarn.lock" exit 1 fi if [ ! -f yarn.lock ] && [ ! -f package-lock.json ]; then @@ -88,17 +88,17 @@ jobs: run: | git config user.name github-actions git config user.email github-actions@github.com - + - uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0 with: node-version: 22.11.0 registry-url: https://npm.echohq.com/ - + - name: Configure GitHub Packages auth env: GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} run: npm config set //npm.pkg.github.com/:_authToken "${GH_TOKEN}" - + - name: Generate Tag name id: generate_tag_name env: @@ -113,11 +113,11 @@ jobs: else TAG_NAME=v$(node -p "require('./package.json').version") fi - + echo "Generated TAG_NAME: $TAG_NAME" echo "TAG_NAME=$TAG_NAME" >> $GITHUB_ENV echo "TAG_NAME=$TAG_NAME" >> $GITHUB_OUTPUT - + - name: Extract CLI version id: extract_cli_version run: | @@ -125,7 +125,7 @@ jobs: echo "CLI version being packed is $CLI_VERSION" echo "CLI_VERSION=$CLI_VERSION" >> $GITHUB_ENV echo "CLI_VERSION=$CLI_VERSION" >> $GITHUB_OUTPUT - + - name: Check if CLI version is latest id: check_latest_cli_version env: @@ -136,7 +136,7 @@ jobs: if [ "$INPUT_DEV" == "false" ] || [ -n "$INPUT_CLI_TAG" ] || [ "$GIT_REF" != "refs/heads/main" ]; then exit 0 fi - + LATEST_CLI_VERSION=$(curl -s https://api.github.com/repos/Checkmarx/ast-cli/releases/latest | grep '"tag_name":' | sed -E 's/.*"([^"]+)".*/\1/') if [ "$CLI_VERSION" = "$LATEST_CLI_VERSION" ]; then echo "Confirm that the CLI version in the repository is up-to-date with the most recent release: $CLI_VERSION" @@ -144,12 +144,16 @@ jobs: echo "The current repository contains a CLI version that differs from the latest released version: Expected $LATEST_CLI_VERSION, got $CLI_VERSION" exit 1 fi - + - name: NPM ci and build + env: + ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} run: | + npm config set //npm.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" + npm config set //packages.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" npm ci --ignore-scripts npm run build - + - name: Create Pull Request id: create_pr if: inputs.dev == false && inputs.bumpVersion == true @@ -161,28 +165,28 @@ jobs: body: "This is an automated PR created by GitHub Actions" base: main draft: false - + - name: Wait for PR to be created id: pr if: inputs.dev == false && inputs.bumpVersion == true uses: octokit/request-action@b91aabaa861c777dcdb14e2387e30eddf04619ae # v3.0.0 with: route: GET /repos/${{ github.repository }}/pulls?head=${{ github.repository_owner }}:${{ env.BRANCH_NAME }} - + - name: Merge Pull Request if: inputs.dev == false && inputs.bumpVersion == true uses: octokit/request-action@b91aabaa861c777dcdb14e2387e30eddf04619ae # v3.0.0 with: route: PUT /repos/${{ github.repository }}/pulls/${{ steps.create_pr.outputs.pull-request-number }}/merge merge_method: squash - + - name: Push tag if: inputs.dev == false run: | - git pull + git pull git tag ${{env.TAG_NAME}} git push --tags - + - name: Publish npm package env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} @@ -194,7 +198,7 @@ jobs: else npm publish --access public fi - + - name: Create Release uses: step-security/action-gh-release@277bfa82abcfdb73e5bbb19e213fd76532ee2be5 # v3.0.0 with: @@ -202,7 +206,7 @@ jobs: tag_name: ${{env.TAG_NAME}} generate_release_notes: true prerelease: ${{ inputs.dev }} - + # notify: # if: inputs.dev == false # needs: release @@ -215,7 +219,7 @@ jobs: # release_url: https://github.com/Checkmarx/ast-cli-javascript-wrapper-runtime-cli/releases/tag/${{ needs.release.outputs.TAG_NAME }} # jira_product_name: JS_RUNTIME_WRAPPER # secrets: inherit - + # dispatch_auto_release: # name: Update ADO Extension With new Wrapper Version # if: inputs.dev == false From 36487fe20aef18172a7dbdba5d53f4eb6ad4854d Mon Sep 17 00:00:00 2001 From: Atish Jadhav Date: Wed, 8 Jul 2026 19:28:10 +0530 Subject: [PATCH 4/8] Fix error message for lockfile verification Correct error message formatting in release workflow --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 50796300..e3ab9609 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -77,7 +77,7 @@ jobs: - name: Verify single lockfile (Step 0 - Supply Chain Policy) run: | if [ -f yarn.lock ] && [ -f package-lock.json ]; then - "❌ ERROR: Both yarn.lock and package-lock.json found. Policy requires exactly ONE package manager. Allowed: npm + package-lock.json OR Yarn + yarn.lock" + echo "❌ ERROR: Both yarn.lock and package-lock.json found. Policy requires exactly ONE package manager. Allowed: npm + package-lock.json OR Yarn + yarn.lock" exit 1 fi if [ ! -f yarn.lock ] && [ ! -f package-lock.json ]; then From 47b1a0ac1e284359a0162c9f7df69029f13e5c30 Mon Sep 17 00:00:00 2001 From: atishj99 Date: Wed, 8 Jul 2026 19:31:43 +0530 Subject: [PATCH 5/8] removing extra space --- .github/workflows/ci.yml | 8 +++---- .github/workflows/release.yml | 42 +++++++++++++++++------------------ 2 files changed, 25 insertions(+), 25 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 13753f79..dd05dd89 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -1,9 +1,9 @@ name: AST Javascript wrapper CI - + on: [ pull_request ] permissions: contents: read - + jobs: unit-tests: runs-on: cx-public-ubuntu-x64 @@ -34,7 +34,7 @@ jobs: env: ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} - name: Run Unit Tests - + run: npm run test:unit integration-tests: runs-on: cx-public-ubuntu-x64 @@ -67,7 +67,7 @@ jobs: - name: Code Linting run: npm run lint - run: npm run build --if-present - + - name: Run tests env: CX_CLIENT_ID: ${{ secrets.CX_CLIENT_ID}} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index e3ab9609..e8d63f37 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -1,5 +1,5 @@ name: Javascript Wrapper Release - + on: workflow_call: inputs: @@ -43,10 +43,10 @@ on: required: false default: true type: boolean - + permissions: contents: read - + jobs: delete: permissions: @@ -73,7 +73,7 @@ jobs: - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: fetch-depth: 0 - + - name: Verify single lockfile (Step 0 - Supply Chain Policy) run: | if [ -f yarn.lock ] && [ -f package-lock.json ]; then @@ -88,17 +88,17 @@ jobs: run: | git config user.name github-actions git config user.email github-actions@github.com - + - uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0 with: node-version: 22.11.0 registry-url: https://npm.echohq.com/ - + - name: Configure GitHub Packages auth env: GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} run: npm config set //npm.pkg.github.com/:_authToken "${GH_TOKEN}" - + - name: Generate Tag name id: generate_tag_name env: @@ -113,11 +113,11 @@ jobs: else TAG_NAME=v$(node -p "require('./package.json').version") fi - + echo "Generated TAG_NAME: $TAG_NAME" echo "TAG_NAME=$TAG_NAME" >> $GITHUB_ENV echo "TAG_NAME=$TAG_NAME" >> $GITHUB_OUTPUT - + - name: Extract CLI version id: extract_cli_version run: | @@ -125,7 +125,7 @@ jobs: echo "CLI version being packed is $CLI_VERSION" echo "CLI_VERSION=$CLI_VERSION" >> $GITHUB_ENV echo "CLI_VERSION=$CLI_VERSION" >> $GITHUB_OUTPUT - + - name: Check if CLI version is latest id: check_latest_cli_version env: @@ -136,7 +136,7 @@ jobs: if [ "$INPUT_DEV" == "false" ] || [ -n "$INPUT_CLI_TAG" ] || [ "$GIT_REF" != "refs/heads/main" ]; then exit 0 fi - + LATEST_CLI_VERSION=$(curl -s https://api.github.com/repos/Checkmarx/ast-cli/releases/latest | grep '"tag_name":' | sed -E 's/.*"([^"]+)".*/\1/') if [ "$CLI_VERSION" = "$LATEST_CLI_VERSION" ]; then echo "Confirm that the CLI version in the repository is up-to-date with the most recent release: $CLI_VERSION" @@ -144,7 +144,7 @@ jobs: echo "The current repository contains a CLI version that differs from the latest released version: Expected $LATEST_CLI_VERSION, got $CLI_VERSION" exit 1 fi - + - name: NPM ci and build env: ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} @@ -153,7 +153,7 @@ jobs: npm config set //packages.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" npm ci --ignore-scripts npm run build - + - name: Create Pull Request id: create_pr if: inputs.dev == false && inputs.bumpVersion == true @@ -165,28 +165,28 @@ jobs: body: "This is an automated PR created by GitHub Actions" base: main draft: false - + - name: Wait for PR to be created id: pr if: inputs.dev == false && inputs.bumpVersion == true uses: octokit/request-action@b91aabaa861c777dcdb14e2387e30eddf04619ae # v3.0.0 with: route: GET /repos/${{ github.repository }}/pulls?head=${{ github.repository_owner }}:${{ env.BRANCH_NAME }} - + - name: Merge Pull Request if: inputs.dev == false && inputs.bumpVersion == true uses: octokit/request-action@b91aabaa861c777dcdb14e2387e30eddf04619ae # v3.0.0 with: route: PUT /repos/${{ github.repository }}/pulls/${{ steps.create_pr.outputs.pull-request-number }}/merge merge_method: squash - + - name: Push tag if: inputs.dev == false run: | - git pull + git pull git tag ${{env.TAG_NAME}} git push --tags - + - name: Publish npm package env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} @@ -198,7 +198,7 @@ jobs: else npm publish --access public fi - + - name: Create Release uses: step-security/action-gh-release@277bfa82abcfdb73e5bbb19e213fd76532ee2be5 # v3.0.0 with: @@ -206,7 +206,7 @@ jobs: tag_name: ${{env.TAG_NAME}} generate_release_notes: true prerelease: ${{ inputs.dev }} - + # notify: # if: inputs.dev == false # needs: release @@ -219,7 +219,7 @@ jobs: # release_url: https://github.com/Checkmarx/ast-cli-javascript-wrapper-runtime-cli/releases/tag/${{ needs.release.outputs.TAG_NAME }} # jira_product_name: JS_RUNTIME_WRAPPER # secrets: inherit - + # dispatch_auto_release: # name: Update ADO Extension With new Wrapper Version # if: inputs.dev == false From fb595e377649dbc722c7376443da74a24ae233aa Mon Sep 17 00:00:00 2001 From: atishj99 Date: Wed, 8 Jul 2026 19:44:38 +0530 Subject: [PATCH 6/8] correcting the secret variable of echo --- .github/workflows/ci.yml | 16 ++++++++-------- .github/workflows/release.yml | 6 +++--- 2 files changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index dd05dd89..f36ca5f8 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -26,13 +26,13 @@ jobs: registry-url: https://npm.echohq.com/ - name: Configure echohq auth (both hosts) env: - ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} + ECHO_NPM_TOKEN: ${{ secrets.ECHO_NPM_TOKEN }} run: | - npm config set //npm.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" - npm config set //packages.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" + npm config set //npm.echohq.com/:_authToken "${ECHO_NPM_TOKEN}" + npm config set //packages.echohq.com/:_authToken "${ECHO_NPM_TOKEN}" - run: npm ci --ignore-scripts env: - ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} + ECHO_NPM_TOKEN: ${{ secrets.ECHO_NPM_TOKEN }} - name: Run Unit Tests run: npm run test:unit @@ -57,13 +57,13 @@ jobs: registry-url: https://npm.echohq.com/ - name: Configure echohq auth (both hosts) env: - ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} + ECHO_NPM_TOKEN: ${{ secrets.ECHO_NPM_TOKEN }} run: | - npm config set //npm.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" - npm config set //packages.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" + npm config set //npm.echohq.com/:_authToken "${ECHO_NPM_TOKEN}" + npm config set //packages.echohq.com/:_authToken "${ECHO_NPM_TOKEN}" - run: npm ci --ignore-scripts env: - ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} + ECHO_NPM_TOKEN: ${{ secrets.ECHO_NPM_TOKEN }} - name: Code Linting run: npm run lint - run: npm run build --if-present diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index e8d63f37..b9295be9 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -147,10 +147,10 @@ jobs: - name: NPM ci and build env: - ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} + ECHO_NPM_TOKEN: ${{ secrets.ECHO_NPM_TOKEN }} run: | - npm config set //npm.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" - npm config set //packages.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" + npm config set //npm.echohq.com/:_authToken "${ECHO_NPM_TOKEN}" + npm config set //packages.echohq.com/:_authToken "${ECHO_NPM_TOKEN}" npm ci --ignore-scripts npm run build From b6fe891aa3d52748a1149d1bfb8330a216734977 Mon Sep 17 00:00:00 2001 From: atishj99 Date: Thu, 9 Jul 2026 12:18:41 +0530 Subject: [PATCH 7/8] vulnerability fixes --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 3a02d20c..6b320cfc 100644 --- a/package-lock.json +++ b/package-lock.json @@ -3281,9 +3281,9 @@ "license": "MIT" }, "node_modules/brace-expansion": { - "version": "2.1.1", - "resolved": "https://packages.echohq.com/artifactory/api/npm/npm/brace-expansion/-/brace-expansion-2.1.1.tgz", - "integrity": "sha512-WR1cURNjuvBLMZBMbqM0UoE+WAfdUcEV1ccD8PVBVOI+Z3ND4+SZbN8RsfT2bMuG1qwz5RFvPukSZm5fF2D5eA==", + "version": "2.1.2", + "resolved": "https://packages.echohq.com/artifactory/api/npm/npm/brace-expansion/-/brace-expansion-2.1.2.tgz", + "integrity": "sha512-w5JZcKgdhDOgOwm8H+KgbosopHMuGcl6qbulwjtz3SM7I7P3yW1eAjzMPLrIE+NQ9vjgANKHWeMHnrT0OXW1oA==", "license": "MIT", "dependencies": { "balanced-match": "^1.0.0" diff --git a/package.json b/package.json index fc5fd259..7edc51ab 100644 --- a/package.json +++ b/package.json @@ -63,7 +63,7 @@ "minimatch": "^3.1.2", "underscore": "^1.13.8", "picomatch": "^2.3.2", - "brace-expansion": "^2.0.3", + "brace-expansion": "^2.1.2", "uuid": "^9.0.0" }, "publishConfig": { From ac097ca6717d3c77896bc67f99005a68139cf630 Mon Sep 17 00:00:00 2001 From: atishj99 Date: Thu, 9 Jul 2026 17:51:47 +0530 Subject: [PATCH 8/8] updating ast-cli version --- .github/workflows/ci.yml | 16 ++++++++-------- .github/workflows/release.yml | 6 +++--- checkmarx-ast-cli.checksums | 10 +++++----- checkmarx-ast-cli.version | 2 +- 4 files changed, 17 insertions(+), 17 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index f36ca5f8..dd05dd89 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -26,13 +26,13 @@ jobs: registry-url: https://npm.echohq.com/ - name: Configure echohq auth (both hosts) env: - ECHO_NPM_TOKEN: ${{ secrets.ECHO_NPM_TOKEN }} + ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} run: | - npm config set //npm.echohq.com/:_authToken "${ECHO_NPM_TOKEN}" - npm config set //packages.echohq.com/:_authToken "${ECHO_NPM_TOKEN}" + npm config set //npm.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" + npm config set //packages.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" - run: npm ci --ignore-scripts env: - ECHO_NPM_TOKEN: ${{ secrets.ECHO_NPM_TOKEN }} + ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} - name: Run Unit Tests run: npm run test:unit @@ -57,13 +57,13 @@ jobs: registry-url: https://npm.echohq.com/ - name: Configure echohq auth (both hosts) env: - ECHO_NPM_TOKEN: ${{ secrets.ECHO_NPM_TOKEN }} + ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} run: | - npm config set //npm.echohq.com/:_authToken "${ECHO_NPM_TOKEN}" - npm config set //packages.echohq.com/:_authToken "${ECHO_NPM_TOKEN}" + npm config set //npm.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" + npm config set //packages.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" - run: npm ci --ignore-scripts env: - ECHO_NPM_TOKEN: ${{ secrets.ECHO_NPM_TOKEN }} + ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} - name: Code Linting run: npm run lint - run: npm run build --if-present diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index b9295be9..e8d63f37 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -147,10 +147,10 @@ jobs: - name: NPM ci and build env: - ECHO_NPM_TOKEN: ${{ secrets.ECHO_NPM_TOKEN }} + ECHO_LIBRARIES_ACCESS_KEY: ${{ secrets.ECHO_LIBRARIES_ACCESS_KEY }} run: | - npm config set //npm.echohq.com/:_authToken "${ECHO_NPM_TOKEN}" - npm config set //packages.echohq.com/:_authToken "${ECHO_NPM_TOKEN}" + npm config set //npm.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" + npm config set //packages.echohq.com/:_authToken "${ECHO_LIBRARIES_ACCESS_KEY}" npm ci --ignore-scripts npm run build diff --git a/checkmarx-ast-cli.checksums b/checkmarx-ast-cli.checksums index 364b9e8e..543ed6d1 100644 --- a/checkmarx-ast-cli.checksums +++ b/checkmarx-ast-cli.checksums @@ -1,7 +1,7 @@ { - "windows_x64": "c0a2c3db0927004b8fe015117359dfd49766d4e1b61e1641e42f1e286a3a5e25", - "darwin_x64": "f24712bee593ea6a253dc0c9551ca5b51e6b1336baf3c3abc5281a4e93d5f3b7", - "linux_x64": "a8cf3222c88590cd355f4af6f9d10938f8ff834c44c1a80cf126a5d3f039c764", - "linux_arm64": "763a3a42d2c75d8272dd90f686162233509272bc026e46e3d3079878ce76d9c2", - "linux_armv6": "d897fb4260d70eed1329c0c50919e98a32ab19daf7836898faaa20de52252383" + "windows_x64": "b93d0564891bf33231a1195cc246605c80f701d19d4c934a2986df341924a029", + "darwin_x64": "b79cb1e6e7832a584f2e96c30046a4dd970ecb1c87cbb526eb799340321ed3d8", + "linux_x64": "861112f7b78a9e84d8d4b4490c0dc6f6f716e5863246111db9c1c24efcf760db", + "linux_arm64": "99c47d3686f84daf485a2e724f8d967d380aa00b04c83c3a438f5339e9cf111c", + "linux_armv6": "76a2e0b27e4d1d70b2f98785d0ec003bdfe53da021e95b970f4ffac44d99e930" } diff --git a/checkmarx-ast-cli.version b/checkmarx-ast-cli.version index fae17394..e62a93d5 100644 --- a/checkmarx-ast-cli.version +++ b/checkmarx-ast-cli.version @@ -1 +1 @@ -2.3.54 +2.3.55