Add code security scanning
This commit is contained in:
parent
99a255ad75
commit
24ef654772
|
@ -0,0 +1,23 @@
|
|||
name: Code Security Scan
|
||||
|
||||
on:
|
||||
pull_request:
|
||||
branches: 'main'
|
||||
push:
|
||||
|
||||
jobs:
|
||||
semgrep:
|
||||
name: Code Scan
|
||||
runs-on: ubuntu-latest
|
||||
container:
|
||||
image: returntocorp/semgrep
|
||||
|
||||
if: (github.actor != 'dependabot[bot]')
|
||||
|
||||
steps:
|
||||
- name: Checkout code
|
||||
uses: actions/checkout@v3
|
||||
|
||||
- run: semgrep ci
|
||||
env:
|
||||
SEMGREP_RULES: p/typescript
|
Loading…
Reference in New Issue