Git Security Scanner

Version updated for https://github.com/cloudon-one/git-security-scanner-public to version v2.

• This action is used across all versions by ? repositories.

Go to the GitHub Marketplace to find the latest changes.

Release notes

Security Improvements

• Supply Chain Security: Added SHA256 checksum verification for all downloaded security tools (Gitleaks, Trivy, OSV-Scanner, Helm) in the Dockerfile. This ensures that the binaries are authentic and have not been tampered with.
• Bug Fixes: Fixed Docker build errors by adding correct multi-arch checksums for all security tools.

Maintenance & Code Quality

• Unit Tests: Added a comprehensive unit test suite for git-audit-script.py to ensure reliability and prevent regressions.
• Development Tools: Added a Makefile to streamline building, testing, and running the scanner locally.
• Code Quality: Refactored git-audit-script.py to improve readability, added type hints, and fixed all linting errors (Ruff).
• Documentation: Updated README and documentation for v2.0.0.

• cloudon-one
• GitHub Actions