valitydev/java-workflow
14
0
Fork 0
mirror of https://github.com/valitydev/java-workflow.git synced 2024-11-06 01:25:18 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Sec 24, 32 (#71)

Browse Source
This commit is contained in:
Ilya 2024-07-05 12:51:45 +03:00 committed by GitHub
parent 716d8efcfe
commit 0d93045550
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 16 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
.github/workflows/semgrep-scan.yml vendored
View File

@ -20,7 +20,7 @@ jobs:
--config="p/default" --config="p/default"
- name: Save report - name: Save report
uses: actions/upload-artifact@v3 uses: actions/upload-artifact@v4
with: with:
name: semgrep.sarif name: semgrep.sarif
path: semgrep.sarif path: semgrep.sarif
@ -29,4 +29,14 @@ jobs:
uses: github/codeql-action/upload-sarif@v3.25.7 uses: github/codeql-action/upload-sarif@v3.25.7
with: with:
sarif_file: semgrep.sarif sarif_file: semgrep.sarif
category: semgrep category: semgrep
- name: Mattermost Notification
if: always()
uses: rtCamp/action-slack-notify@v2.2.0
env:
SLACK_USERNAME: ${{ github.event.repository.name }}
SLACK_WEBHOOK: ${{ secrets.mm-sa-wh-url }}
SLACK_COLOR: ${{ job.status }}
SLACK_LINK_NAMES: true
SLACK_FOOTER: ""

6
README.md
View File

@ -121,6 +121,8 @@ on:
- '*' - '*'
jobs: jobs:
build: scan:
uses: valitydev/java-workflow/.github/workflows/semgrep-scan.yml@v3.0.3 uses: valitydev/java-workflow/.github/workflows/semgrep-scan.yml@v3.0.5
secrets:
mm-sa-wh-url: ${{ secrets.MATTERMOST_SA_WH_URL}}
``` ```