File tree Expand file tree Collapse file tree 2 files changed +35
-24
lines changed
Expand file tree Collapse file tree 2 files changed +35
-24
lines changed Load Diff This file was deleted.
Original file line number Diff line number Diff line change 1+ name : Security Checks
2+ on :
3+ workflow_call :
4+ permissions :
5+ contents : read
6+ jobs :
7+ trivy :
8+ name : Trivy
9+ runs-on : ubuntu-latest
10+ steps :
11+ - name : Checkout Repository
12+ uses : actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5
13+
14+ - name : Scan repo
15+ uses : aquasecurity/trivy-action@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8 # 0.33.1
16+ with :
17+ scan-type : ' fs'
18+ scan-ref : ' .'
19+ scanners : ' vuln,secret,config'
20+ exit-code : ' 1'
21+ ignore-unfixed : ' true'
22+ severity : ' MEDIUM,HIGH,CRITICAL'
23+
24+ npm-audit :
25+ name : PNPM Audit
26+ runs-on : ubuntu-latest
27+ steps :
28+ - name : Checkout Repository
29+ uses : actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5
30+
31+ - name : Setup
32+ uses : ./.github/actions/setup
33+
34+ - name : Run pnpm audit
35+ run : pnpm audit --prod --audit-level=moderate
You can’t perform that action at this time.
0 commit comments