Merge pull request #40 from endorlabs/fix-sast

install semgrep for SAST run
endorlabs · Oct 24, 2024 · 8b73058 · 8b73058
2 parents 2ae3449 + c0f83ff
commit 8b73058
Showing 1 changed file with 16 additions and 1 deletion.
diff --git a/.github/workflows/sast-test.yaml b/.github/workflows/sast-test.yaml
@@ -33,6 +33,20 @@ jobs:
       - name: Checkout Repository
         uses: actions/checkout@v3
 
+      - name: Set up Python
+        uses: actions/setup-python@v2
+        with:
+          python-version: "3.x" # Ensure you use a valid Python version
+
+      - name: Install Semgrep
+        run: |
+          python -m pip install --upgrade pip
+          pip install semgrep
+
+      - name: Semgrep version
+        run: |
+          semgrep --version
+
       - name: Endor Labs SAST Code Scan
         uses: endorlabs/github-action@cd1341287bbe6dba282277a8ae4dc4847008a660
         with:
@@ -41,4 +55,5 @@ jobs:
             scan_summary_output_type: "table"
             pr: "false"
             enable_github_action_token: "true"
-            scan_sast: "true"
+            scan_sast: "true"
+            scan_dependencies: "false"