OSSAR

chore(deps): lock file maintenance #4944

	name: OSSAR

	on:
	push:
	branches: ["main"]
	pull_request:
	# The branches below must be a subset of the branches above
	branches: ["main"]
	schedule:
	- cron: "42 15 * * 2"

	permissions:
	contents: read

	jobs:
	OSSAR-Scan:
	# OSSAR runs on windows-latest.
	# ubuntu-latest and macos-latest support coming soon
	permissions:
	contents: read # for actions/checkout to fetch code
	security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
	runs-on: windows-latest

	steps:
	- name: Checkout repository
	uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7

	# Run open source static analysis tools
	- name: Run OSSAR
	uses: github/ossar-action@4e96c4f6e591eb4b991abfd459e40b136a317aea # v2.0.0
	id: ossar

	# Upload results to the Security tab
	- name: Upload OSSAR results
	uses: github/codeql-action/upload-sarif@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4
	with:
	sarif_file: ${{ steps.ossar.outputs.sarifFile }}

Provide feedback