Skip to content
This repository has been archived by the owner on Oct 3, 2024. It is now read-only.

Analyze CVEs

Analyze CVEs #107

Workflow file for this run

name: Analyze CVEs
permissions:
contents: read
on:
schedule:
- cron: "0 10 * * *"
pull_request:
paths:
- "**/package.json"
- "**/package-lock.json"
- "go.mod"
- "go.sum"
jobs:
validate:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
- name: Install tools
uses: defenseunicorns/zarf/.github/actions/install-tools@main
- name: Install latest version of Zarf
uses: defenseunicorns/setup-zarf@main
- name: Check for CVEs in Dependencies
run: make test-cves