mirror of https://github.com/actions/setup-go.git
				
				
				
			chủ yếu
This commit is contained in:
		
							parent
							
								
									b8e6f2b137
								
							
						
					
					
						commit
						9568b6258d
					
				|  | @ -0,0 +1,49 @@ | ||||||
|  | # This workflow checks out code, performs a Codacy security scan | ||||||
|  | # and integrates the results with the | ||||||
|  | # GitHub Advanced Security code scanning feature.  For more information on | ||||||
|  | # the Codacy security scan action usage and parameters, see | ||||||
|  | # https://github.com/codacy/codacy-analysis-cli-action. | ||||||
|  | # For more information on Codacy Analysis CLI in general, see | ||||||
|  | # https://github.com/codacy/codacy-analysis-cli. | ||||||
|  | 
 | ||||||
|  | name: Codacy Security Scan | ||||||
|  | 
 | ||||||
|  | on: | ||||||
|  |   push: | ||||||
|  |     branches: [ main ] | ||||||
|  |   pull_request: | ||||||
|  |     # The branches below must be a subset of the branches above | ||||||
|  |     branches: [ main ] | ||||||
|  |   schedule: | ||||||
|  |     - cron: '17 12 * * 3' | ||||||
|  | 
 | ||||||
|  | jobs: | ||||||
|  |   codacy-security-scan: | ||||||
|  |     name: Codacy Security Scan | ||||||
|  |     runs-on: ubuntu-latest | ||||||
|  |     steps: | ||||||
|  |       # Checkout the repository to the GitHub Actions runner | ||||||
|  |       - name: Checkout code | ||||||
|  |         uses: actions/checkout@v2 | ||||||
|  | 
 | ||||||
|  |       # Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis | ||||||
|  |       - name: Run Codacy Analysis CLI | ||||||
|  |         uses: codacy/codacy-analysis-cli-action@1.1.0 | ||||||
|  |         with: | ||||||
|  |           # Check https://github.com/codacy/codacy-analysis-cli#project-token to get your project token from your Codacy repository | ||||||
|  |           # You can also omit the token and run the tools that support default configurations | ||||||
|  |           project-token: ${{ secrets.CODACY_PROJECT_TOKEN }} | ||||||
|  |           verbose: true | ||||||
|  |           output: results.sarif | ||||||
|  |           format: sarif | ||||||
|  |           # Adjust severity of non-security issues | ||||||
|  |           gh-code-scanning-compat: true | ||||||
|  |           # Force 0 exit code to allow SARIF file generation | ||||||
|  |           # This will handover control about PR rejection to the GitHub side | ||||||
|  |           max-allowed-issues: 2147483647 | ||||||
|  | 
 | ||||||
|  |       # Upload the SARIF file generated in the previous step | ||||||
|  |       - name: Upload SARIF results file | ||||||
|  |         uses: github/codeql-action/upload-sarif@v1 | ||||||
|  |         with: | ||||||
|  |           sarif_file: results.sarif | ||||||
		Loading…
	
		Reference in New Issue
	
	 duongxuantuan154
						duongxuantuan154