Mercurial > p > roundup > code
comparison .github/workflows/anchore.yml @ 7225:a81f3750a14a
Commit https://github.com/roundup-tracker/roundup/pull/8
Bump github/codeql-action from 2.2.5 to 2.2.6
also include sarif upload changes.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Sun, 12 Mar 2023 23:48:15 -0400 |
| parents | 8dc5b3739367 |
| children | 0fd41edd26b0 |
comparison
equal
deleted
inserted
replaced
| 7224:01c1f357363f | 7225:a81f3750a14a |
|---|---|
| 47 with: | 47 with: |
| 48 image: "localbuild/testimage:latest" | 48 image: "localbuild/testimage:latest" |
| 49 fail-build: true | 49 fail-build: true |
| 50 - name: Upload Anchore Scan Report | 50 - name: Upload Anchore Scan Report |
| 51 if: always() | 51 if: always() |
| 52 uses: github/codeql-action/upload-sarif@32dc499307d133bb5085bae78498c0ac2cf762d5 | 52 uses: github/codeql-action/upload-sarif@16964e90ba004cdf0cd845b866b5df21038b7723 |
| 53 # v2.2.5 | 53 # v2.2.6 |
| 54 with: | 54 with: |
| 55 sarif_file: ${{ steps.scan.outputs.sarif }} | 55 sarif_file: ${{ steps.scan.outputs.sarif }} |
| 56 - name: Inspect action SARIF report | 56 - name: Inspect action SARIF report |
| 57 if: always() | 57 if: always() |
| 58 run: cat ${{ steps.scan.outputs.sarif }} | 58 run: cat ${{ steps.scan.outputs.sarif }} |