aboutsummaryrefslogtreecommitdiffhomepage
diff options
context:
space:
mode:
authorhrushikeshdeshpande <[email protected]>2024-09-22 16:33:19 -0400
committerYuchen Wu <[email protected]>2024-09-23 11:36:36 -0700
commit8ae4ebbf02cb9cf429528e120425a298d7862e57 (patch)
treebce3eb624a02056753ba3e9ced5635aee7a8e87d
parent9917177c646a0ab58197f15ec57a3bcbe1e0a201 (diff)
downloadpingora-8ae4ebbf02cb9cf429528e120425a298d7862e57.tar.gz
pingora-8ae4ebbf02cb9cf429528e120425a298d7862e57.zip
Update semgrep.yml
Updating existing Semgrep.yml file - Semgrep is a tool that will be used to scan Cloudflare's public repos for Supply chain, code and secrets. This work is part of Application & Product Security team's initiative to onboard Semgrep onto all of Cloudflare's public repos. In case of any questions, please reach out to "Hrushikesh Deshpande" on cf internal chat.
-rw-r--r--.github/workflows/semgrep.yml5
1 files changed, 2 insertions, 3 deletions
diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
index c821e5a..b40314b 100644
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -1,4 +1,3 @@
-
on:
pull_request: {}
workflow_dispatch: {}
@@ -12,7 +11,7 @@ name: Semgrep config
jobs:
semgrep:
name: semgrep/ci
- runs-on: ubuntu-20.04
+ runs-on: ubuntu-latest
env:
SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
SEMGREP_URL: https://cloudflare.semgrep.dev
@@ -21,5 +20,5 @@ jobs:
container:
image: returntocorp/semgrep
steps:
- - uses: actions/checkout@v3
+ - uses: actions/checkout@v4
- run: semgrep ci