actions/codecov-action
1
0
Fork 0
mirror of https://github.com/codecov/codecov-action.git synced 2025-12-23 20:27:02 +08:00
Code Issues Packages Projects Releases Wiki Activity

Regenerate scorecards-analysis.yml (#750)

Browse Source
This commit is contained in:
Mitchell Borrego
2022-06-07 11:41:03 -04:00
committed by GitHub
parent 963c54109b
commit dd819f8a8a
1 changed files with 20 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

28
.github/workflows/scorecards-analysis.yml vendored
View File

@@ -3,7 +3,7 @@ on:
# Only the default branch is supported. # Only the default branch is supported.
branch_protection_rule: branch_protection_rule:
schedule: schedule:
- cron: '36 18 * * 6' - cron: '43 20 * * 1'
push: push:
branches: [ master ] branches: [ master ]
@@ -17,32 +17,38 @@ jobs:
permissions: permissions:
# Needed to upload the results to code-scanning dashboard. # Needed to upload the results to code-scanning dashboard.
security-events: write security-events: write
# Used to receive a badge. (Upcoming feature)
id-token: write
actions: read actions: read
contents: read contents: read
steps: steps:
- name: "Checkout code" - name: "Checkout code"
uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # v2.4.0 uses: actions/checkout@a12a3943b4bdde767164f792f33f40b04645d846 # v3.0.0
with: with:
persist-credentials: false persist-credentials: false
- name: "Run analysis" - name: "Run analysis"
uses: ossf/scorecard-action@5c8bc69dc88b65c66584e07611df79d3579b0377 # v1.0.1 uses: ossf/scorecard-action@5c8bc69dc88b65c66584e07611df79d3579b0377 # v1.1.0
with: with:
results_file: results.sarif results_file: results.sarif
results_format: sarif results_format: sarif
# Read-only PAT token. To create it, # (Optional) Read-only PAT token. Uncomment the `repo_token` line below if:
# follow the steps in https://github.com/ossf/scorecard-action#pat-token-creation. # - you want to enable the Branch-Protection check on a *public* repository, or
repo_token: ${{ secrets.SCORECARD_READ_TOKEN }} # - you are installing Scorecards on a *private* repository
# Publish the results to enable scorecard badges. For more details, see # To create the PAT, follow the steps in https://github.com/ossf/scorecard-action#authentication-with-pat.
# repo_token: ${{ secrets.SCORECARD_READ_TOKEN }}
# Publish the results for public repositories to enable scorecard badges. For more details, see
# https://github.com/ossf/scorecard-action#publishing-results. # https://github.com/ossf/scorecard-action#publishing-results.
# For private repositories, `publish_results` will automatically be set to `false`, # For private repositories, `publish_results` will automatically be set to `false`, regardless
# regardless of the value entered here. # of the value entered here.
publish_results: true publish_results: true
# Upload the results as artifacts (optional). # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
# format to the repository Actions tab.
- name: "Upload artifact" - name: "Upload artifact"
uses: actions/upload-artifact@82c141cc518b40d92cc801eee768e7aafc9c2fa2 # v2.3.1 uses: actions/upload-artifact@6673cd052c4cd6fcf4b4e6e60ea986c889389535 # v3.0.0
with: with:
name: SARIF file name: SARIF file
path: results.sarif path: results.sarif