Skip to content
Security Scanning

build(deps): bump github/codeql-action from 3.28.18 to 4.32.6 #4

Sign in to view logs

build(deps): bump github/codeql-action from 3.28.18 to 4.32.6

build(deps): bump github/codeql-action from 3.28.18 to 4.32.6 #4

Workflow file for this run

.github/workflows/security.yml at d8dcc5b
name: Security Scanning
on:
pull_request:
branches: [main]
push:
branches: [main]
permissions:
contents: read
security-events: write
jobs:
security-scan:
name: Security Scan
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Run Semgrep
uses: returntocorp/semgrep-action@713efdd345f3035192eaa63f56867b88e63e4e5d # v1.0.0
with:
config: auto
- name: Run Trivy
uses: aquasecurity/trivy-action@18f2510ee396bbf400402947e7f3b01483832965 # v0.31.0
with:
scan-type: fs
format: sarif
output: trivy-results.sarif
- name: Upload Trivy SARIF
uses: github/codeql-action/upload-sarif@0d579ffd059c29b07949a3cce3983f0780820c98 # v4.32.6
if: always()
with:
sarif_file: trivy-results.sarif