diff options
author | Matt Johnston <matt@ucc.asn.au> | 2022-05-23 16:32:11 +0800 |
---|---|---|
committer | GitHub <noreply@github.com> | 2022-05-23 16:32:11 +0800 |
commit | b81c81c04708191252096ebd67bb53985a37d32f (patch) | |
tree | d8558d58eaffc520f830a500e212ff3931d63364 /.github | |
parent | 3c3e4f6e6bdf643c3859d9069aa6b509d482605d (diff) | |
download | dropbear-b81c81c04708191252096ebd67bb53985a37d32f.tar.gz |
Add flawfinder action
Diffstat (limited to '.github')
-rw-r--r-- | .github/workflows/flawfinder.yml | 33 |
1 files changed, 33 insertions, 0 deletions
diff --git a/.github/workflows/flawfinder.yml b/.github/workflows/flawfinder.yml new file mode 100644 index 0000000..f7e5709 --- /dev/null +++ b/.github/workflows/flawfinder.yml @@ -0,0 +1,33 @@ +name: flawfinder + +on: + push: + branches: [ master ] + pull_request: + # The branches below must be a subset of the branches above + branches: [ master ] + schedule: + - cron: '17 3 * * 5' + +jobs: + flawfinder: + name: Flawfinder + runs-on: ubuntu-latest + permissions: + actions: read + contents: read + security-events: write + steps: + - name: Checkout code + uses: actions/checkout@v3 + + - name: flawfinder_scan + uses: david-a-wheeler/flawfinder@8e4a779ad59dbfaee5da586aa9210853b701959c + with: + arguments: '--sarif ./' + output: 'flawfinder_results.sarif' + + - name: Upload analysis results to GitHub Security tab + uses: github/codeql-action/upload-sarif@v2 + with: + sarif_file: ${{github.workspace}}/flawfinder_results.sarif |