./auto-merge.sh Main #2
Conversation
BSL 1.1 for non-commercial use
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
git add index.html git commit -m "Füge index.html hinzu" git push origin main Signed-off-by: rfof-network.org <[email protected]>
git add index.html git commit -m "Füge index.html hinzu" git push origin main Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
@RFOF-NETWORK Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
git add docs/index.html docs/style.css docs/script.js git commit -m "Hinzufügen der index.html und zugehöriger Dateien" git push origin main Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
Signed-off-by: rfof-network.org <[email protected]>
|
This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation. |
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| return jsonify(response) | ||
|
|
||
| if __name__ == "__main__": | ||
| app.run(debug=True) |
Check failure
Code scanning / CodeQL
Flask app is run in debug mode High
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix AI about 10 hours ago
To fix the problem, we need to ensure that the Flask application does not run in debug mode in a production environment. The best way to achieve this is to use an environment variable to control the debug mode. This way, we can enable debug mode during development and disable it in production without changing the code.
- Import the
osmodule to access environment variables. - Use an environment variable (e.g.,
FLASK_DEBUG) to control the debug mode. - Modify the
app.runcall to setdebugbased on the value of the environment variable.
| @@ -2,2 +2,3 @@ | ||
| from handlers import transaction_handler, token_handler, user_handler | ||
| import os | ||
|
|
||
| @@ -12,2 +13,3 @@ | ||
| if __name__ == "__main__": | ||
| app.run(debug=True) | ||
| debug_mode = os.getenv('FLASK_DEBUG', 'False').lower() in ['true', '1', 't'] | ||
| app.run(debug=debug_mode) |
| runs-on: ubuntu-latest | ||
| environment: dev | ||
| steps: | ||
| - name: 'Checkout GitHub Action' | ||
| uses: actions/checkout@v4 | ||
|
|
||
| # If you want to use Azure RBAC instead of Publish Profile, then uncomment the task below | ||
| # - name: 'Login via Azure CLI' | ||
| # uses: azure/login@v1 | ||
| # with: | ||
| # creds: ${{ secrets.AZURE_RBAC_CREDENTIALS }} # set up AZURE_RBAC_CREDENTIALS secrets in your repository | ||
|
|
||
| - name: Setup Python ${{ env.PYTHON_VERSION }} Environment | ||
| uses: actions/setup-python@v4 | ||
| with: | ||
| python-version: ${{ env.PYTHON_VERSION }} | ||
|
|
||
| - name: 'Resolve Project Dependencies Using Pip' | ||
| shell: bash | ||
| run: | | ||
| pushd './${{ env.AZURE_FUNCTIONAPP_PACKAGE_PATH }}' | ||
| python -m pip install --upgrade pip | ||
| pip install -r requirements.txt --target=".python_packages/lib/site-packages" | ||
| popd | ||
|
|
||
| - name: 'Run Azure Functions Action' | ||
| uses: Azure/functions-action@v1 | ||
| id: fa | ||
| with: | ||
| app-name: ${{ env.AZURE_FUNCTIONAPP_NAME }} | ||
| package: ${{ env.AZURE_FUNCTIONAPP_PACKAGE_PATH }} | ||
| publish-profile: ${{ secrets.AZURE_FUNCTIONAPP_PUBLISH_PROFILE }} # Remove publish-profile to use Azure RBAC | ||
| scm-do-build-during-deployment: true | ||
| enable-oryx-build: true | ||
|
|
||
| # Custom steps to include your specific inventions and concepts | ||
| - name: 'Custom Step 1: Execute Special Function' | ||
| shell: bash | ||
| run: | | ||
| echo "Executing special function related to RFOF-NETWORK..." | ||
| python -c "print('Hallo, @RFOF-NETWORK <my name is @PRAI>!')" | ||
|
|
||
| - name: 'Custom Step 2: Matrix Calculation' | ||
| shell: bash | ||
| run: | | ||
| python -c " | ||
| def create_matrix(rows, cols, fill_value=0): | ||
| return [[fill_value for _ in range(cols)] for _ in range(rows)] | ||
| def print_matrix(matrix): | ||
| for row in matrix: | ||
| print(' '.join(map(str, row))) | ||
| matrix = create_matrix(5, 5, fill_value=1) | ||
| enhance_matrix = lambda m: [[x * 42 for x in row] for row in m] | ||
| matrix = enhance_matrix(matrix) | ||
| print_matrix(matrix) | ||
| " |
Check warning
Code scanning / CodeQL
Workflow does not contain permissions Medium
| popd | ||
|
|
||
| - name: 'Run Azure Functions Action' | ||
| uses: Azure/functions-action@v1 |
Check warning
Code scanning / CodeQL
Unpinned tag for a non-immutable Action in workflow Medium
| runs-on: ubuntu-latest | ||
|
|
||
| steps: | ||
| - uses: actions/checkout@v4 | ||
| - name: Build the site in the jekyll/builder container | ||
| run: | | ||
| docker run \ | ||
| -v ${{ github.workspace }}:/srv/jekyll -v ${{ github.workspace }}/_site:/srv/jekyll/_site \ | ||
| jekyll/builder:latest /bin/bash -c "chmod -R 777 /srv/jekyll && jekyll build --future" |
Check warning
Code scanning / CodeQL
Workflow does not contain permissions Medium
#!/bin/bash
Konfiguriere die Branch-Namen
BASE_BRANCH="gh-pages"
FEATURE_BRANCH="main"
Checke den Basis-Branch aus
git checkout $BASE_BRANCH
Hole die neuesten Änderungen
git pull origin $BASE_BRANCH
Versuche, den Feature-Branch zu mergen
git merge $FEATURE_BRANCH
Überprüfe, ob es Merge-Konflikte gibt
if [ $? -ne 0 ]; then
echo "Es gibt Merge-Konflikte. Lösen und fortfahren."
else
echo "Merge erfolgreich. Pushe die Änderungen."
fi
chmod +x auto-merge.sh