Skip to content

Commit

Permalink
Add semgrep scanning
Browse files Browse the repository at this point in the history
  • Loading branch information
SeaweedbrainCY committed Jul 6, 2024
1 parent 26ab14b commit 3d2a229
Show file tree
Hide file tree
Showing 2 changed files with 36 additions and 0 deletions.
2 changes: 2 additions & 0 deletions .github/workflows/deploy.yml
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,8 @@ on:
env:
DOCKER_IMAGE_NAME: "galera_cluster_healthcheck"
jobs:
security_scan:
uses: ./.github/workflows/security_scan.yml
build-and-publish-image:
name: Build and Publish Docker image
runs-on: ubuntu-latest
Expand Down
34 changes: 34 additions & 0 deletions .github/workflows/security_scan.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,34 @@
name: "Test and Coverage"

on:
push:
branches:
- '*'
- '**'
- '*/*'
- '**/**'
- '!dev'
tags-ignore:
- '**'
workflow_call:



jobs:
security_scan_analysis:
name: Smegrep Scan Analysis
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v3

- name: Set up Python
uses: actions/setup-python@v4
with:
python-version: 3.x

- name: Install semgrep
run: python3 -m pip install semgrep

- name: Run semgrep
run: semgrep scan --error

0 comments on commit 3d2a229

Please sign in to comment.