File tree Expand file tree Collapse file tree 1 file changed +18
-14
lines changed
Expand file tree Collapse file tree 1 file changed +18
-14
lines changed Original file line number Diff line number Diff line change 1212jobs :
1313 run-scans :
1414 runs-on : ubuntu-latest
15+ strategy :
16+ matrix :
17+ tool :
18+ - dependabot
19+ - semgrep
20+ - osvscannersca
21+ - gitleaks
22+ - trufflehogsecurity
23+ - snyksast
1524
1625 steps :
1726 - name : Checkout Code
@@ -21,17 +30,12 @@ jobs:
2130 run : |
2231 curl -sSL https://cli.kondukto.io | sh
2332
24- name : Scan with Dependabot
25- run : kdt scan --host ${{ secrets.KONDUKTO_HOST }} --token ${{ secrets.KONDUKTO_TOKEN }} -p ${{ secrets.PROJECT_NAME }} -t dependabot -b $TARGET_BRANCH --async
26-
27- - name : Scan with Semgrep
28- run : kdt scan --host ${{ secrets.KONDUKTO_HOST }} --token ${{ secrets.KONDUKTO_TOKEN }} -p ${{ secrets.PROJECT_NAME }} -t semgrep -b $TARGET_BRANCH --async
29-
30- - name : Scan with OSV
31- run : kdt scan --host ${{ secrets.KONDUKTO_HOST }} --token ${{ secrets.KONDUKTO_TOKEN }} -p ${{ secrets.PROJECT_NAME }} -t osvscannersca -b $TARGET_BRANCH --async
32-
33- - name : Scan with Gitleaks
34- run : kdt scan --host ${{ secrets.KONDUKTO_HOST }} --token ${{ secrets.KONDUKTO_TOKEN }} -p ${{ secrets.PROJECT_NAME }} -t gitleaks -b $TARGET_BRANCH --async
35-
36- - name : Scan with Trufflehog
37- run : kdt scan --host ${{ secrets.KONDUKTO_HOST }} --token ${{ secrets.KONDUKTO_TOKEN }} -p ${{ secrets.PROJECT_NAME }} -t trufflehogsecurity -b $TARGET_BRANCH --async
33+ name : Scan with ${{ matrix.tool }}
34+ run : |
35+ kdt scan \
36+ --host ${{ secrets.KONDUKTO_HOST }} \
37+ --token ${{ secrets.KONDUKTO_TOKEN }} \
38+ -p ${{ secrets.PROJECT_NAME }} \
39+ -t ${{ matrix.tool }} \
40+ -b $TARGET_BRANCH \
41+ --async
You can’t perform that action at this time.
0 commit comments