-
Notifications
You must be signed in to change notification settings - Fork 1
39 lines (32 loc) · 1 KB
/
main.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
name: Security Scans
on: [push, pull_request] # Adjust this to your desired triggering events
jobs:
security-checks:
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v2
- name: Snyk
uses: snyk/[email protected]
with:
command: test
- name: Dependabot CISA Known Exploitable Vulnerabilities
uses: advanced-security/dependabot-kev-action@v0
- name: Fetch Metadata from Dependabot PRs
uses: dependabot/[email protected]
with:
alert-lookup: true
compat-lookup: true
github-token: ${{ github.token }}
skip-commit-verification: false
skip-verification: false
# - name: GP Security Scan
# uses: whitesource/[email protected]
# with:
# gp-token:
# ws-destination-url:
# ws-api-key:
# ws-user-key:
# ws-product-key: # optional
# print-scan-report: # optional
# actions_step_debug: # optional