Skip to content

Commit

Permalink
refactor: use reusable workflow for semgrep
Browse files Browse the repository at this point in the history
  • Loading branch information
dvarasani-crest authored Aug 27, 2024
1 parent 2e10f86 commit 0adee60
Showing 1 changed file with 3 additions and 9 deletions.
12 changes: 3 additions & 9 deletions .github/workflows/build-test-release.yml
Original file line number Diff line number Diff line change
Expand Up @@ -59,16 +59,10 @@ jobs:
- uses: pre-commit/[email protected]

semgrep:
runs-on: ubuntu-latest
name: security-sast-semgrep
if: github.actor != 'dependabot[bot]'
steps:
- uses: actions/checkout@v4
- name: Semgrep
id: semgrep
uses: semgrep/semgrep-action@v1
with:
publishToken: ${{ secrets.SEMGREP_PUBLISH_TOKEN }}
uses: splunk/sast-scanning/.github/workflows/sast-scan.yml@main
secrets:
SEMGREP_KEY: ${{ secrets.SEMGREP_PUBLISH_TOKEN }}

run-unit-tests:
name: test-unit ${{ matrix.python-version }}
Expand Down

0 comments on commit 0adee60

Please sign in to comment.