This repository was archived by the owner on Apr 8, 2025. It is now read-only.
File tree 2 files changed +48
-12
lines changed
2 files changed +48
-12
lines changed Original file line number Diff line number Diff line change 5151 uses : github/codeql-action/analyze@012739e5082ff0c22ca6d6ab32e07c36df03c4a4 # v2.3.3
5252 with :
5353 category : " /language:${{ matrix.language }}"
54-
55- - name : CodeQL and Dependabot Report Action
56- uses : rsdmike/github-security-report-action@a149b24539044c92786ec39af8ba38c93496495d # v3.0.4
57- with :
58- template : report
59- token : ${{ secrets.SECURITY_TOKEN }}
6054
61- - name : GitHub Upload Release Artifacts
62- uses : actions/upload-artifact@82c141cc518b40d92cc801eee768e7aafc9c2fa2 # v2.3.1
63- with :
64- name : report
65- path : |
66- ./report.pdf
Original file line number Diff line number Diff line change 1+ name : " generate pdf"
2+
3+ on :
4+ workflow_dispatch :
5+ pull_request :
6+ paths :
7+ - ' **generate_report.yml'
8+ push :
9+ branches :
10+ - main
11+ paths :
12+ - ' **generate_report.yml'
13+
14+ permissions :
15+ contents : read
16+
17+ jobs :
18+ analyze :
19+ name : Analyze
20+ runs-on : ubuntu-latest
21+ permissions :
22+ actions : read
23+ contents : read
24+ security-events : write
25+
26+ strategy :
27+ fail-fast : false
28+ matrix :
29+ language : [ go ]
30+
31+ steps :
32+ - name : Harden Runner
33+ uses : step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1
34+ with :
35+ egress-policy : audit
36+
37+ - name : CodeQL and Dependabot Report Action
38+ uses : rsdmike/github-security-report-action@a149b24539044c92786ec39af8ba38c93496495d # v3.0.4
39+ with :
40+ template : report
41+ token : ${{ secrets.SECURITY_TOKEN }}
42+
43+ - name : GitHub Upload Release Artifacts
44+ uses : actions/upload-artifact@82c141cc518b40d92cc801eee768e7aafc9c2fa2 # v2.3.1
45+ with :
46+ name : report
47+ path : |
48+ ./report.pdf
You can’t perform that action at this time.
0 commit comments