Skip to content

Commit

Permalink
fix(static-analysis): fixing the failed checkss
Browse files Browse the repository at this point in the history
  • Loading branch information
pkanoongo committed Dec 10, 2024
1 parent 16b3794 commit 794dfb1
Show file tree
Hide file tree
Showing 2 changed files with 10 additions and 1 deletion.
6 changes: 6 additions & 0 deletions static-analysis/semgrep/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -24,6 +24,12 @@ GitHub Action that scans code changes being made and posts security findings in
#
# Required: true
# Default: ""

github-token:
# GitHub token that can checkout the repository. e.g. 'secrets.GITHUB_TOKEN'
#
# Required: true
# Default: ""
```
<!-- action-docs-usage source="action.yaml" -->

Expand Down
5 changes: 4 additions & 1 deletion static-analysis/semgrep/action.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,9 @@ inputs:
semgrep-app-token:
required: true
description: Semgrep API token to be added to the repo that allows pulling the latest rule config from the ruleboard in the Semgrep UI
github-token:
required: true
description: GitHub token that can checkout the repository. e.g. 'secrets.GITHUB_TOKEN'

runs:
using: composite
Expand All @@ -24,7 +27,7 @@ runs:
echo "Default branch is $default_branch"
echo "default_branch=$default_branch" >> $GITHUB_ENV
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
github-token: ${{ inputs.github-token}}
shell: bash

# Semgrep CI step with dynamic baseline reference
Expand Down

0 comments on commit 794dfb1

Please sign in to comment.