File tree Expand file tree Collapse file tree 2 files changed +22
-8
lines changed
Expand file tree Collapse file tree 2 files changed +22
-8
lines changed Original file line number Diff line number Diff line change 2222 run : ${{ steps.download-actionlint.outputs.executable }} -color
2323 shell : bash
2424
25+ analyse-code :
26+ name : Code scanner
27+ needs : check-workflows
28+ uses : ./.github/workflows/security-code-scanner.yml
29+ permissions :
30+ actions : read
31+ contents : read
32+ security-events : write
33+ secrets :
34+ SECURITY_SCAN_METRICS_TOKEN : ${{ secrets.SECURITY_SCAN_METRICS_TOKEN }}
35+ APPSEC_BOT_SLACK_WEBHOOK : ${{ secrets.APPSEC_BOT_SLACK_WEBHOOK }}
36+
2537 build-lint-test :
2638 name : Build, lint, and test
2739 uses : ./.github/workflows/build-lint-test.yml
3143 runs-on : ubuntu-latest
3244 needs :
3345 - check-workflows
46+ - analyse-code
3447 - build-lint-test
3548 outputs :
3649 PASSED : ${{ steps.set-output.outputs.PASSED }}
Original file line number Diff line number Diff line change 11name : MetaMask Security Code Scanner
22
33on :
4- push :
5- branches :
6- - main
7- pull_request :
8- branches :
9- - main
4+ workflow_call :
5+ secrets :
6+ SECURITY_SCAN_METRICS_TOKEN :
7+ required : false
8+ APPSEC_BOT_SLACK_WEBHOOK :
9+ required : false
1010 workflow_dispatch :
1111
1212jobs :
1313 run-security-scan :
14+ name : Run security scan
1415 runs-on : ubuntu-latest
1516 permissions :
1617 actions : read
1718 contents : read
1819 security-events : write
1920 steps :
20- - name : MetaMask Security Code Scanner
21- uses : MetaMask/Security-Code-Scanner@main
21+ - name : Analyse code
22+ uses : MetaMask/action-security-code-scanner@v1
2223 with :
2324 repo : ${{ github.repository }}
2425 paths_ignored : |
You can’t perform that action at this time.
0 commit comments