Skip to content

v2.17.0

Latest
Marketplace
Latest
Marketplace

Choose a tag to compare

View all tags
@varunsh-coder varunsh-coder released this 09 Apr 15:17
Immutable release. Only release title and notes can be modified.
v2.17.0
f808768
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

What's Changed

Policy Store Support

Added use-policy-store and api-key inputs to fetch security policies directly from the StepSecurity Policy Store. Policies can be defined and attached at the workflow, repo, org, or cluster (ARC) level, with the most granular policy taking precedence. This is the preferred method over the existing policy input which requires id-token: write permission. If no policy is found in the store, the action defaults to audit mode.

Full Changelog: v2.16.1...v2.17.0

Assets 3
Loading