flawfinder/.github/workflows/main.yml

28 lines
772 B
YAML
Raw Normal View History

on: [push]
jobs:
2021-06-23 21:23:34 +02:00
flawfinder:
name: Flawfinder
2021-06-23 21:23:34 +02:00
runs-on: ubuntu-latest
steps:
# To use this repository's private action,
# you must check out the repository
- name: Checkout
uses: actions/checkout@v2
- name: Flawfinder action step
uses: ./ # Uses an action in the root directory
with:
arguments: '--sarif ./setup.py'
2021-06-24 20:56:59 +02:00
output: 'flawfinder_results.sarif'
- name: Upload a Build Artifact
uses: actions/upload-artifact@v2.2.4
with:
path: flawfinder_results.sarif
2021-06-23 21:23:34 +02:00
- name: Upload analysis results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v1
with:
2021-06-24 20:56:59 +02:00
sarif_file: ${{github.workspace}}/flawfinder_results.sarif