15fa0277cf
The file path in the TSCCR repo for the `returntocorp/semgrep` action was incorrect, so the pinning tool was not able to find the correct entry and it was not pinned in #17238. The repository is fixed in https://github.com/hashicorp/security-tsccr/pull/431
19 lines
521 B
YAML
19 lines
521 B
YAML
name: Semgrep
|
|
|
|
on:
|
|
pull_request: {}
|
|
# Skipping push for now since it would run against the entire code base.
|
|
# push:
|
|
|
|
jobs:
|
|
semgrep:
|
|
name: Semgrep Scan
|
|
runs-on: ubuntu-latest
|
|
env:
|
|
SEMGREP_SEND_METRICS: 0
|
|
# Skip any PR created by dependabot to avoid permission issues
|
|
if: (github.actor != 'dependabot[bot]')
|
|
steps:
|
|
- uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
|
|
- uses: returntocorp/semgrep-action@245bf11ddb2f3d4e35f116608cf6e27ae0f9aa04 # v1
|