Fix/tracefoss 1096 Spring Boot 3 Upgrade (#61)

Author: graflmsg

.github/workflows/trivy.yml

@@ -40,12 +40,12 @@ jobs:
         uses: actions/checkout@v3
 
       - name: Build an image from Dockerfile
-        run: docker build -t docker.io${{ env.REGISTRY }}/${{ github.repository }}:${{ github.sha }} .
+        run: docker build -t docker.io${{ env.REGISTRY }}/${{ github.repository }}:fe_${{ github.sha }} .
 
       - name: Run Trivy vulnerability scanner
         uses: aquasecurity/trivy-action@9ab158e8597f3b310480b9a69402b419bc03dbd5
         with:
-          image-ref: 'docker.io${{ env.REGISTRY }}/${{ github.repository }}:${{ github.sha }}'
+          image-ref: 'docker.io${{ env.REGISTRY }}/${{ github.repository }}:fe_${{ github.sha }}'
           format: 'template'
           exit-code: "1"
           template: '@/contrib/sarif.tpl'
@@ -135,7 +135,7 @@ jobs:
         if: always()
         uses: aquasecurity/trivy-action@master
         with:
-          image-ref: ${{ env.REGISTRY }}/${{ github.repository }}:${{needs.prepare-env.outputs.check_sha}}
+          image-ref: ${{ env.REGISTRY }}/${{ github.repository }}:be_${{needs.prepare-env.outputs.check_sha}}
           trivyignores: "./.github/workflows/.trivyignore"
           format: "sarif"
           output: "trivy-results2.sarif"

.github/workflows/veracode.yml .github/workflows/veracode_backend.yml.github/workflows/veracode.yml renamed to .github/workflows/veracode_backend.yml

@@ -1,42 +1,18 @@
 name: "Veracode upload and scan"
 
 on:
+  workflow_dispatch:
   push:
     branches: [ main ]
+    paths:
+      - 'backend/**'
   schedule:
-    # Once a day
+    # Once a day 0 am
     - cron: "0 0 * * *"
 env:
   JAVA_VERSION: 17
 
 jobs:
-  analyze-frontend:
-    runs-on: ubuntu-latest
-    defaults:
-      run:
-        working-directory: frontend
-    permissions:
-      actions: read
-      contents: read
-      security-events: write
-
-    steps:
-      - name: Checkout repository
-        uses: actions/checkout@v3
-        with:
-          repository: ''
-
-      - run: zip -r veracode-scan-target.zip ./
-
-      - name: Run Veracode Upload And Scan
-        uses: veracode/[email protected]
-        with:
-          appname: "Traceability-Foss-Frontend"
-          createprofile: false
-          filepath: "./frontend/veracode-scan-target.zip"
-          vid: '${{ secrets.VERACODE_API_ID || secrets.ORG_VERACODE_API_ID }}'
-          vkey: '${{ secrets.VERACODE_API_KEY || secrets.ORG_VERACODE_API_KEY }}'
-
   analyze-backend:
     runs-on: ubuntu-latest
     defaults:

.github/workflows/veracode_frontend.yml

@@ -0,0 +1,41 @@
+name: "Veracode upload and scan - Frontend"
+
+on:
+  workflow_dispatch:
+  push:
+    branches: [ main ]
+    paths:
+      - 'frontend/**'
+  schedule:
+    # Once a day 1 am
+    - cron: "0 1 * * *"
+env:
+  JAVA_VERSION: 17
+
+jobs:
+  analyze-frontend:
+    runs-on: ubuntu-latest
+    defaults:
+      run:
+        working-directory: frontend
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v3
+        with:
+          repository: ''
+
+      - run: zip -r veracode-scan-target.zip ./
+
+      - name: Run Veracode Upload And Scan
+        uses: veracode/[email protected]
+        with:
+          appname: "Traceability-Foss-Frontend"
+          createprofile: false
+          filepath: "./frontend/veracode-scan-target.zip"
+          vid: '${{ secrets.VERACODE_API_ID || secrets.ORG_VERACODE_API_ID }}'
+          vkey: '${{ secrets.VERACODE_API_KEY || secrets.ORG_VERACODE_API_KEY }}'