Skip to content

Commit

Permalink
🃏 Update scorecard workflow (#207)
Browse files Browse the repository at this point in the history
  • Loading branch information
@aaronmondal
aaronmondal authored Apr 4, 2024
1 parent de920f4 commit 9e40e00
Showing 1 changed file with 14 additions and 13 deletions.
27 changes: 14 additions & 13 deletions .github/workflows/scorecard.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,35 +11,36 @@ permissions: read-all
jobs:
analysis:
name: Scorecard analysis
runs-on: ubuntu-latest
runs-on: ubuntu-22.04
permissions:
security-events: write
id-token: write

steps:
- name: "Checkout code"
uses: >- # v3.5.2
actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab
- name: Checkout
uses: >- # v4.1.1
actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
with:
persist-credentials: false

- name: "Run analysis"
uses: >- # v2.1.3
ossf/scorecard-action@80e868c13c90f172d68d1f4501dee99e2479f7af
- name: Run analysis
uses: >- # v2.3.1
ossf/scorecard-action@0864cf19026789058feabb7e87baa5f140aac736
with:
results_file: results.sarif
results_format: sarif
publish_results: true

- name: "Upload artifact"
uses: >- # v3.1.2
actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce
- name: Upload artifact
uses: >- # v4.0.0
actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392
with:
name: SARIF file
path: results.sarif
retention-days: 5

- name: "Upload to code-scanning"
uses: >- # v2.3.6
github/codeql-action/upload-sarif@83f0fe6c4988d98a455712a27f0255212bba9bd4
- name: Upload to code-scanning
uses: >- # v3.22.11
github/codeql-action/upload-sarif@b374143c1149a9115d881581d29b8390bbcbb59c
with:
sarif_file: results.sarif

0 comments on commit 9e40e00

Please sign in to comment.