Skip to content
This repository was archived by the owner on Apr 8, 2025. It is now read-only.

Commit 32a570d

Browse files
johnoloughlinjohnoloughlin
committed
fix codeql
Signed-off-by: John O'Loughlin <[email protected]>
1 parent 8e8c249 commit 32a570d

File tree

2 files changed

+51
-0
lines changed

2 files changed

+51
-0
lines changed

Diff for: .github/workflows/codeql.yml

+3
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,7 @@
11
name: "CodeQL"
22

33
on:
4+
workflow_dispatch:
45
push:
56
branches: [ "main" ]
67
pull_request:
@@ -53,12 +54,14 @@ jobs:
5354
category: "/language:${{ matrix.language }}"
5455

5556
- name: CodeQL and Dependabot Report Action
57+
if: ${{ github.event_name == 'workflow_dispatch' }}
5658
uses: rsdmike/github-security-report-action@a149b24539044c92786ec39af8ba38c93496495d # v3.0.4
5759
with:
5860
template: report
5961
token: ${{ secrets.SECURITY_TOKEN }}
6062

6163
- name: GitHub Upload Release Artifacts
64+
if: ${{ github.event_name == 'workflow_dispatch' }}
6265
uses: actions/upload-artifact@82c141cc518b40d92cc801eee768e7aafc9c2fa2 # v2.3.1
6366
with:
6467
name: report

Diff for: .github/workflows/generate_report.yml

+48
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,48 @@
1+
name: "generate pdf"
2+
3+
on:
4+
workflow_dispatch:
5+
pull_request:
6+
paths:
7+
- '**generate_report.yml'
8+
push:
9+
branches:
10+
- main
11+
paths:
12+
- '**generate_report.yml'
13+
14+
permissions:
15+
contents: read
16+
17+
jobs:
18+
analyze:
19+
name: Analyze
20+
runs-on: ubuntu-latest
21+
permissions:
22+
actions: read
23+
contents: read
24+
security-events: write
25+
26+
strategy:
27+
fail-fast: false
28+
matrix:
29+
language: [ go ]
30+
31+
steps:
32+
- name: Harden Runner
33+
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1
34+
with:
35+
egress-policy: audit
36+
37+
- name: CodeQL and Dependabot Report Action
38+
uses: rsdmike/github-security-report-action@a149b24539044c92786ec39af8ba38c93496495d # v3.0.4
39+
with:
40+
template: report
41+
token: ${{ secrets.SECURITY_TOKEN }}
42+
43+
- name: GitHub Upload Release Artifacts
44+
uses: actions/upload-artifact@82c141cc518b40d92cc801eee768e7aafc9c2fa2 # v2.3.1
45+
with:
46+
name: report
47+
path: |
48+
./report.pdf

0 commit comments

Comments
 (0)