Skip to content
This repository has been archived by the owner on Sep 12, 2023. It is now read-only.

Update Code Scanning Security Tool to Shiftleft #1

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
26 changes: 26 additions & 0 deletions .github/workflows/shiftleft.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,26 @@
# This workflow integrates ShiftLeft NG SAST with GitHub
# Visit https://docs.shiftleft.io for help
name: Analyze with ShiftLeft NG SAST

on:
pull_request: # include to analyze when you create a pull request
branches:
- master
workflow_dispatch:

jobs:
NGSAST:
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v2
- name: Download ShiftLeft cli
run: |
curl https://cdn.shiftleft.io/download/sl > ${GITHUB_WORKSPACE}/sl && chmod a+rx ${GITHUB_WORKSPACE}/sl
- name: Python
run: ${GITHUB_WORKSPACE}/sl analyze --verbose --tag app.group=django-charsleft-widget --app django-charsleft-widget-python --tag branch=${GITHUB_REF} --python $(pwd)
env:
SHIFTLEFT_ACCESS_TOKEN: ${{ secrets.SHIFTLEFT_ACCESS_TOKEN }}
- name: Javascript
run: ${GITHUB_WORKSPACE}/sl analyze --verbose --tag app.group=django-charsleft-widget --app django-charsleft-widget-javascript --tag branch=${GITHUB_REF} --js --cpg $(pwd)
env:
SHIFTLEFT_ACCESS_TOKEN: ${{ secrets.SHIFTLEFT_ACCESS_TOKEN }}