diff options
author | hrushikeshdeshpande <[email protected]> | 2024-09-22 16:33:19 -0400 |
---|---|---|
committer | Yuchen Wu <[email protected]> | 2024-09-23 11:36:36 -0700 |
commit | 8ae4ebbf02cb9cf429528e120425a298d7862e57 (patch) | |
tree | bce3eb624a02056753ba3e9ced5635aee7a8e87d | |
parent | 9917177c646a0ab58197f15ec57a3bcbe1e0a201 (diff) | |
download | pingora-8ae4ebbf02cb9cf429528e120425a298d7862e57.tar.gz pingora-8ae4ebbf02cb9cf429528e120425a298d7862e57.zip |
Update semgrep.yml
Updating existing Semgrep.yml file - Semgrep is a tool that will be used to scan Cloudflare's public repos for Supply chain, code and secrets. This work is part of Application & Product Security team's initiative to onboard Semgrep onto all of Cloudflare's public repos.
In case of any questions, please reach out to "Hrushikesh Deshpande" on cf internal chat.
-rw-r--r-- | .github/workflows/semgrep.yml | 5 |
1 files changed, 2 insertions, 3 deletions
diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml index c821e5a..b40314b 100644 --- a/.github/workflows/semgrep.yml +++ b/.github/workflows/semgrep.yml @@ -1,4 +1,3 @@ - on: pull_request: {} workflow_dispatch: {} @@ -12,7 +11,7 @@ name: Semgrep config jobs: semgrep: name: semgrep/ci - runs-on: ubuntu-20.04 + runs-on: ubuntu-latest env: SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }} SEMGREP_URL: https://cloudflare.semgrep.dev @@ -21,5 +20,5 @@ jobs: container: image: returntocorp/semgrep steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - run: semgrep ci |