security(semgrep): update semgrep rules file

moscaale · moscaale · commit 38014c07e5de · 2026-03-24T10:54:09.000+01:00
diff --git a/.github/semgrep-rules.yml b/.github/semgrep-rules.yml
diff --git a/.github/workflows/build_and_deploy.yml b/.github/workflows/build_and_deploy.yml
@@ -9,6 +9,9 @@ on:
       - published
       - edited
   workflow_dispatch: # Add this to allow manual triggering
+  pull_request:
+    branches:
+      - main
 
 jobs:
   build-api:
diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
@@ -40,7 +40,7 @@ jobs:
             --config p/default \
             --config p/secrets \
             --config p/security-audit
-            --config .github/semgrep.yaml
+            --config .github/semgrep-rules.yml
             --severity WARNING
           exit 0  # Never block this job
 
@@ -51,6 +51,6 @@ jobs:
             --config p/default \
             --config p/secrets \
             --config p/security-audit
-            --config .github/semgrep.yaml
+            --config .github/semgrep-rules.yml
             --severity ERROR \
             --error 
