Главная Обзор Помощь
Вход
LBP
/
LinuxGSM
зеркало из https://github.com/GameServerManagers/LinuxGSM.git
4
0
Ответвить 0
Файлы Задачи 0 Вики
Дерево: 501798943e
Ветки Метки
LinuxGSM
/
.github
/
workflows
/
codacy-analysis.yml

codacy-analysis.yml 2.4 KB
История Исходник

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. # This workflow uses actions that are not certified by GitHub.
    2. 

  2. # They are provided by a third-party and are governed by
    3. 

  3. # separate terms of service, privacy policy, and support
    4. 

  4. # documentation.
    5. 

  5. 

  6. # This workflow checks out code, performs a Codacy security scan
    7. 

  7. # and integrates the results with the
    8. 

  8. # GitHub Advanced Security code scanning feature.  For more information on
    9. 

  9. # the Codacy security scan action usage and parameters, see
    10. 

  10. # https://github.com/codacy/codacy-analysis-cli-action.
    11. 

  11. # For more information on Codacy Analysis CLI in general, see
    12. 

  12. # https://github.com/codacy/codacy-analysis-cli.
    13. 

  13. 

  14. name: Codacy Security Scan
    15. 

  15. 

  16. on:
    17. 

  17.   push:
    18. 

  18.     branches: ["main","master"]
    19. 

  19.   pull_request:
    20. 

  20.     # The branches below must be a subset of the branches above
    21. 

  21.     branches: ["main","master"]
    22. 

  22.   schedule:
    23. 

  23.     - cron: "28 22 * * 4"
    24. 

  24. 

  25. permissions:
    26. 

  26.   contents: read
    27. 

  27. 

  28. jobs:
    29. 

  29.   codacy-security-scan:
    30. 

  30.     permissions:
    31. 

  31.       contents: read # for actions/checkout to fetch code
    32. 

  32.       security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
    33. 

  33.       actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
    34. 

  34.     name: Codacy Security Scan
    35. 

  35.     runs-on: ubuntu-latest
    36. 

  36.     steps:
    37. 

  37.       # Checkout the repository to the GitHub Actions runner
    38. 

  38.       - name: Checkout code
    39. 

  39.         uses: actions/checkout@v3
    40. 

  40. 

  41.       # Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis
    42. 

  42.       - name: Run Codacy Analysis CLI
    43. 

  43.         uses: codacy/codacy-analysis-cli-action@v4.2.0
    44. 

  44.         with:
    45. 

  45.           # Check https://github.com/codacy/codacy-analysis-cli#project-token to get your project token from your Codacy repository
    46. 

  46.           # You can also omit the token and run the tools that support default configurations
    47. 

  47.           project-token: ${{ secrets.CODACY_PROJECT_TOKEN }}
    48. 

  48.           verbose: true
    49. 

  49.           output: results.sarif
    50. 

  50.           format: sarif
    51. 

  51.           # Adjust severity of non-security issues
    52. 

  52.           gh-code-scanning-compat: true
    53. 

  53.           # Force 0 exit code to allow SARIF file generation
    54. 

  54.           # This will handover control about PR rejection to the GitHub side
    55. 

  55.           max-allowed-issues: 2147483647
    56. 

  56. 

  57.       # Upload the SARIF file generated in the previous step
    58. 

  58.       - name: Upload SARIF results file
    59. 

  59.         uses: github/codeql-action/upload-sarif@v2
    60. 

  60.         with:
    61. 

  61.           sarif_file: results.sarif
    62.