Mercurial > p > roundup > code
comparison .github/workflows/ossf-scorecard.yml @ 7729:edd93fa4a5ec
chore: update actions in gihub workflows.
[skip travis] - no ci on travis.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Sun, 28 Jan 2024 22:53:02 -0500 |
| parents | 6ed521352d22 |
| children | 85198b53b999 |
comparison
equal
deleted
inserted
replaced
| 7728:a17d0abfb212 | 7729:edd93fa4a5ec |
|---|---|
| 33 # contents: read | 33 # contents: read |
| 34 # actions: read | 34 # actions: read |
| 35 | 35 |
| 36 steps: | 36 steps: |
| 37 - name: "Checkout code" | 37 - name: "Checkout code" |
| 38 uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 | 38 uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 |
| 39 with: | 39 with: |
| 40 persist-credentials: false | 40 persist-credentials: false |
| 41 | 41 |
| 42 - name: "Run analysis" | 42 - name: "Run analysis" |
| 43 uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # v2.3.0 | 43 uses: ossf/scorecard-action@0864cf19026789058feabb7e87baa5f140aac736 # v2.3.10 |
| 44 with: | 44 with: |
| 45 results_file: results.sarif | 45 results_file: results.sarif |
| 46 results_format: sarif | 46 results_format: sarif |
| 47 # (Optional) "write" PAT token. Uncomment the `repo_token` line below if: | 47 # (Optional) "write" PAT token. Uncomment the `repo_token` line below if: |
| 48 # - you want to enable the Branch-Protection check on a *public* repository, or | 48 # - you want to enable the Branch-Protection check on a *public* repository, or |
| 60 publish_results: true | 60 publish_results: true |
| 61 | 61 |
| 62 # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF | 62 # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF |
| 63 # format to the repository Actions tab. | 63 # format to the repository Actions tab. |
| 64 - name: "Upload artifact" | 64 - name: "Upload artifact" |
| 65 uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 | 65 uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0 |
| 66 with: | 66 with: |
| 67 name: SARIF file | 67 name: SARIF file |
| 68 path: results.sarif | 68 path: results.sarif |
| 69 retention-days: 5 | 69 retention-days: 5 |
| 70 | 70 |
| 71 # Upload the results to GitHub's code scanning dashboard. | 71 # Upload the results to GitHub's code scanning dashboard. |
| 72 - name: "Upload to code-scanning" | 72 - name: "Upload to code-scanning" |
| 73 uses: github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a # v2.1.27 | 73 uses: github/codeql-action/upload-sarif@65c74964a9ed8c44ed9f19d4bbc5757a6a8e9ab9 # v2.16.1 |
| 74 with: | 74 with: |
| 75 sarif_file: results.sarif | 75 sarif_file: results.sarif |