-
-
Notifications
You must be signed in to change notification settings - Fork 5
27 lines (25 loc) · 759 Bytes
/
security.yml
File metadata and controls
27 lines (25 loc) · 759 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
---
name: Security
on: # yamllint disable-line rule:truthy
pull_request: {}
push:
branches:
- main
workflow_dispatch:
inputs:
security-type:
description: What Security scanning you would like to run?
required: false
default: "all"
type: choice
options: ["all", "sca", "code-scanning"]
jobs:
sast:
name: SAST
uses: fabasoad/reusable-workflows/.github/workflows/wf-security-sast.yml@main
permissions:
contents: read
security-events: write
with:
code-scanning: ${{ contains(fromJSON('["all", "code-scanning"]'), github.event.inputs.security-type || 'all') }}
sca: ${{ contains(fromJSON('["all", "sca"]'), github.event.inputs.security-type || 'all') }}