From 6a399c0d8044f0db6679d2369517f51b5e001ae9 Mon Sep 17 00:00:00 2001
From: Gabe Stocco <98900+gfs@users.noreply.github.com>
Date: Thu, 25 May 2023 02:10:06 +0000
Subject: [PATCH 1/7] Testing DevSkim Action

---
 .github/workflows/devskim.yml | 36 +++++++++++++++++++++++++++++++++++
 1 file changed, 36 insertions(+)
 create mode 100644 .github/workflows/devskim.yml

diff --git a/.github/workflows/devskim.yml b/.github/workflows/devskim.yml
new file mode 100644
index 00000000..1c4738cc
--- /dev/null
+++ b/.github/workflows/devskim.yml
@@ -0,0 +1,36 @@
+# This workflow uses actions that are not certified by GitHub.
+# They are provided by a third-party and are governed by
+# separate terms of service, privacy policy, and support
+# documentation.
+
+name: DevSkim
+
+on:
+  push:
+    branches: [ "main", v/* ]
+  pull_request:
+    branches: [ "main" ]
+  schedule:
+    - cron: '45 17 * * 5'
+
+jobs:
+  lint:
+    name: DevSkim
+    runs-on: ubuntu-20.04
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v3
+
+      - name: Run DevSkim scanner
+        uses: microsoft/DevSkim-Action@v1
+        with:
+          directory-to-scan: DevSkim-DotNet
+
+      - name: Upload DevSkim scan results to GitHub Security tab
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: devskim-results.sarif

From 41aeba5c8b1aed4a868c48293787a1a24860aa83 Mon Sep 17 00:00:00 2001
From: Gabe Stocco <98900+gfs@users.noreply.github.com>
Date: Mon, 26 Jun 2023 08:58:27 -0700
Subject: [PATCH 2/7] Update devskim.yml

---
 .github/workflows/devskim.yml | 20 +++++++++++++++-----
 1 file changed, 15 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/devskim.yml b/.github/workflows/devskim.yml
index 1c4738cc..78804446 100644
--- a/.github/workflows/devskim.yml
+++ b/.github/workflows/devskim.yml
@@ -26,11 +26,21 @@ jobs:
         uses: actions/checkout@v3
 
       - name: Run DevSkim scanner
-        uses: microsoft/DevSkim-Action@v1
+        uses: microsoft/DevSkim-Action@v1.0.8
         with:
           directory-to-scan: DevSkim-DotNet
-
-      - name: Upload DevSkim scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+          exclude-rules: DS12345
+      - name: Upload a Build Artifact
+        uses: actions/upload-artifact@v3.1.2
         with:
-          sarif_file: devskim-results.sarif
+          # Artifact name
+          name: devskim-results.sarif # optional, default is artifact
+          # A file, directory or wildcard pattern that describes what to upload
+          path: devskim-results.sarif
+          # The desired behavior if no files are found using the provided path.
+          if-no-files-found: error # optional, default is warn
+          # Duration after which artifact will expire in days. 0 means using default retention.
+#      - name: Upload DevSkim scan results to GitHub Security tab
+#        uses: github/codeql-action/upload-sarif@v2
+#        with:
+#          sarif_file: devskim-results.sarif

From 696385a6cfea77de884b49c08ecea79373398b6c Mon Sep 17 00:00:00 2001
From: Gabe Stocco <98900+gfs@users.noreply.github.com>
Date: Mon, 26 Jun 2023 09:00:37 -0700
Subject: [PATCH 3/7] Update devskim.yml

---
 .github/workflows/devskim.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/devskim.yml b/.github/workflows/devskim.yml
index 78804446..a71a887b 100644
--- a/.github/workflows/devskim.yml
+++ b/.github/workflows/devskim.yml
@@ -29,7 +29,7 @@ jobs:
         uses: microsoft/DevSkim-Action@v1.0.8
         with:
           directory-to-scan: DevSkim-DotNet
-          exclude-rules: DS12345
+          exclude-rules: DS137138
       - name: Upload a Build Artifact
         uses: actions/upload-artifact@v3.1.2
         with:

From 7e69fdbe0459b5abffcc668e9c777bdbb37988c1 Mon Sep 17 00:00:00 2001
From: Gabe Stocco <98900+gfs@users.noreply.github.com>
Date: Mon, 26 Jun 2023 09:42:14 -0700
Subject: [PATCH 4/7] Update devskim.yml

Test comma separated values
---
 .github/workflows/devskim.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/devskim.yml b/.github/workflows/devskim.yml
index a71a887b..026ba02a 100644
--- a/.github/workflows/devskim.yml
+++ b/.github/workflows/devskim.yml
@@ -29,7 +29,7 @@ jobs:
         uses: microsoft/DevSkim-Action@v1.0.8
         with:
           directory-to-scan: DevSkim-DotNet
-          exclude-rules: DS137138
+          exclude-rules: DS1234,DS137138
       - name: Upload a Build Artifact
         uses: actions/upload-artifact@v3.1.2
         with:

From 7c1e8c182b6188ab7d4ef498cef1314c36e79693 Mon Sep 17 00:00:00 2001
From: Gabe Stocco <98900+gfs@users.noreply.github.com>
Date: Mon, 26 Jun 2023 09:45:08 -0700
Subject: [PATCH 5/7] Update devskim.yml

---
 .github/workflows/devskim.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/devskim.yml b/.github/workflows/devskim.yml
index 026ba02a..3e089429 100644
--- a/.github/workflows/devskim.yml
+++ b/.github/workflows/devskim.yml
@@ -29,7 +29,7 @@ jobs:
         uses: microsoft/DevSkim-Action@v1.0.8
         with:
           directory-to-scan: DevSkim-DotNet
-          exclude-rules: DS1234,DS137138
+          exclude-rules: DS1234,DS126858
       - name: Upload a Build Artifact
         uses: actions/upload-artifact@v3.1.2
         with:

From e7604c286ddd86e5ac9bf34c72226a18b653c9c6 Mon Sep 17 00:00:00 2001
From: Gabe Stocco <98900+gfs@users.noreply.github.com>
Date: Mon, 26 Jun 2023 14:07:30 -0700
Subject: [PATCH 6/7] Update devskim.yml

Test extra options in 1.0.10
---
 .github/workflows/devskim.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/devskim.yml b/.github/workflows/devskim.yml
index 3e089429..b302c3f9 100644
--- a/.github/workflows/devskim.yml
+++ b/.github/workflows/devskim.yml
@@ -26,10 +26,11 @@ jobs:
         uses: actions/checkout@v3
 
       - name: Run DevSkim scanner
-        uses: microsoft/DevSkim-Action@v1.0.8
+        uses: microsoft/DevSkim-Action@v1.0.10
         with:
           directory-to-scan: DevSkim-DotNet
           exclude-rules: DS1234,DS126858
+          extra-options: -x Verbose
       - name: Upload a Build Artifact
         uses: actions/upload-artifact@v3.1.2
         with:

From 17891e9c02d66abdb0b448dd625ef9255db4530f Mon Sep 17 00:00:00 2001
From: Gabe Stocco <98900+gfs@users.noreply.github.com>
Date: Thu, 13 Jun 2024 14:44:12 -0700
Subject: [PATCH 7/7] Update devskim.yml

---
 .github/workflows/devskim.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/devskim.yml b/.github/workflows/devskim.yml
index b302c3f9..94261ef0 100644
--- a/.github/workflows/devskim.yml
+++ b/.github/workflows/devskim.yml
@@ -16,7 +16,7 @@ on:
 jobs:
   lint:
     name: DevSkim
-    runs-on: ubuntu-20.04
+    runs-on: windows-latest
     permissions:
       actions: read
       contents: read