mirror of
https://github.com/kangyu-california/PersistentWindows.git
synced 2025-05-12 21:45:40 +02:00
Create securitycodescan-analysis.yml
This commit is contained in:
kangyu-california
GitHub
parent
b5446ac215
commit
b7de4fabff
1 changed files with 36 additions and 0 deletions
36
.github/workflows/securitycodescan-analysis.yml
vendored
Normal file
36
.github/workflows/securitycodescan-analysis.yml
vendored
Normal file
|
|
@ -0,0 +1,36 @@
|
||||||
|
# This workflow integrates SecurityCodeScan with GitHub's Code Scanning feature
|
||||||
|
# SecurityCodeScan is a vulnerability patterns detector for C# and VB.NET
|
||||||
|
|
||||||
|
name: SecurityCodeScan
|
||||||
|
|
||||||
|
on:
|
||||||
|
push:
|
||||||
|
branches: [ master ]
|
||||||
|
pull_request:
|
||||||
|
# The branches below must be a subset of the branches above
|
||||||
|
branches: [ master ]
|
||||||
|
schedule:
|
||||||
|
- cron: '42 8 * * 1'
|
||||||
|
|
||||||
|
jobs:
|
||||||
|
SCS:
|
||||||
|
runs-on: windows-latest
|
||||||
|
steps:
|
||||||
|
- uses: actions/checkout@v2
|
||||||
|
- uses: nuget/setup-nuget@v1.0.5
|
||||||
|
- uses: microsoft/setup-msbuild@v1.0.2
|
||||||
|
|
||||||
|
- name: Set up projects for analysis
|
||||||
|
uses: security-code-scan/security-code-scan-add-action@main
|
||||||
|
|
||||||
|
- name: Restore dependencies
|
||||||
|
run: dotnet restore
|
||||||
|
|
||||||
|
- name: Build
|
||||||
|
run: dotnet build --no-restore
|
||||||
|
|
||||||
|
- name: Convert sarif for uploading to GitHub
|
||||||
|
uses: security-code-scan/security-code-scan-results-action@main
|
||||||
|
|
||||||
|
- name: Upload sarif
|
||||||
|
uses: github/codeql-action/upload-sarif@v1
|
||||||
Loading…
Add table
Add a link
Reference in a new issue