You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
35 lines
1013 B
35 lines
1013 B
name: GitHub Actions Security Analysis with zizmor 🌈
|
|
|
|
on:
|
|
push:
|
|
branches:
|
|
- develop
|
|
- stable
|
|
pull_request:
|
|
branches:
|
|
- develop
|
|
- stable
|
|
|
|
concurrency:
|
|
group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
|
|
cancel-in-progress: false
|
|
|
|
permissions: {}
|
|
|
|
jobs:
|
|
zizmor:
|
|
name: Run zizmor 🌈
|
|
runs-on: ubuntu-latest
|
|
permissions:
|
|
security-events: write # Required for upload-sarif (used by zizmor-action) to upload SARIF files.
|
|
# contents: read # Only needed for private repos. Needed to clone the repo.
|
|
# actions: read # Only needed for private repos. Needed for upload-sarif to read workflow run info.
|
|
steps:
|
|
- name: Checkout repository
|
|
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
|
|
with:
|
|
persist-credentials: false
|
|
|
|
- name: Run zizmor 🌈
|
|
uses: zizmorcore/zizmor-action@0dce2577a4760a2749d8cfb7a84b7d5585ebcb7d # v0.5.0
|