Skip to content

Commit 20c4440

Browse files
committed
ci: run osv-scanner
1 parent 503006c commit 20c4440

1 file changed

Lines changed: 12 additions & 1 deletion

File tree

.github/workflows/ci.yml

Lines changed: 12 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,7 @@ concurrency:
1414
permissions: {}
1515

1616
jobs:
17-
audit:
17+
audit-detector:
1818
permissions:
1919
contents: read # to fetch code (actions/checkout)
2020
runs-on: ubuntu-latest
@@ -25,6 +25,17 @@ jobs:
2525
persist-credentials: false
2626
- name: Audit dependencies for security vulnerabilities
2727
uses: g-rath/check-with-osv-detector@0e8c0f954d8618a3a4671eca1918b30b2d085af3 # v0.2.0
28+
audit-scanner:
29+
permissions:
30+
contents: read # to fetch code (actions/checkout)
31+
runs-on: ubuntu-latest
32+
timeout-minutes: 15
33+
steps:
34+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
35+
with:
36+
persist-credentials: false
37+
- run:
38+
docker run -v $PWD:/src ghcr.io/google/osv-scanner:latest scan -r src
2839
ruff:
2940
permissions:
3041
contents: read # to fetch code (actions/checkout)

0 commit comments

Comments
 (0)