forked from Picodes/4naly3er
-
Notifications
You must be signed in to change notification settings - Fork 0
43 lines (37 loc) · 1004 Bytes
/
analyze.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
name: 4naly3er Analysis
# Config File for CBHQ Github Repos
on:
# Only run this action on pushes / pull requests to main branch
push:
branches: [main, testing, analyzer-action]
pull_request:
branches: [main, testing, analyzer-action]
jobs:
analyze:
runs-on:
- ubuntu-latest
# - default-config
# - small
# - amd64
steps:
- name: Git Checkout
uses: actions/checkout@v4
with:
submodules: recursive
- name: ls
shell: bash
run: |
ls -al
- name: Run 4naly3er Action
uses: ./.github/actions/analyzer-action
id: analyzer
- name: Upload SARIF file
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: /tmp/report.sarif.json
# Set GH_TOKEN permissions to be as restricted as possible
# security-events must be set to write for the SARIF upload step
permissions:
security-events: write
contents: read
actions: read