File tree Expand file tree Collapse file tree 1 file changed +32
-0
lines changed
Expand file tree Collapse file tree 1 file changed +32
-0
lines changed Original file line number Diff line number Diff line change 1+ # Name of this GitHub Actions workflow.
2+ name : Semgrep
3+
4+ on :
5+ pull_request :
6+ branches : ['master', 'main']
7+
8+ # Schedule the CI job (this method uses cron syntax):
9+ schedule :
10+ - cron : ' 0 0 * * MON-FRI'
11+
12+ jobs :
13+ semgrep :
14+ # User definable name of this GitHub Actions job.
15+ name : Scan
16+ # If you are self-hosting, change the following `runs-on` value:
17+ runs-on : ubuntu-latest
18+
19+ container :
20+ # A Docker image with Semgrep installed. Do not change this.
21+ image : returntocorp/semgrep
22+
23+ steps :
24+ # Fetch project source with GitHub Actions Checkout.
25+ - uses : actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0
26+ # Run the "semgrep ci" command on the command line of the docker image.
27+ - run : semgrep ci
28+ env :
29+ # Connect to Semgrep Cloud Platform through your SEMGREP_APP_TOKEN.
30+ # Generate a token from Semgrep Cloud Platform > Settings
31+ # and add it to your GitHub secrets.
32+ SEMGREP_APP_TOKEN : ${{ secrets.SEMGREP_APP_TOKEN }}
You can’t perform that action at this time.
0 commit comments