Skip to content
Scorecard security analysis

Bump github/codeql-action from 3.25.8 to 3.25.10 (#512) #597

Sign in to view logs

Bump github/codeql-action from 3.25.8 to 3.25.10 (#512)

Bump github/codeql-action from 3.25.8 to 3.25.10 (#512) #597

Workflow file for this run

.github/workflows/scorecard.yml at 4fb9ae8
name: "Scorecard security analysis"
on:
push:
branches: ["master"]
schedule:
- cron: "25 10 * * 3"
workflow_dispatch:
permissions: {}
jobs:
analyze:
name: "Scorecard security analysis"
runs-on: "ubuntu-latest"
permissions:
actions: "read"
contents: "read"
security-events: "write"
steps:
- name: "Checkout"
uses: "actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332"
- name: "Perform security analysis"
uses: "ossf/scorecard-action@dc50aa9510b46c811795eb24b2f1ba02a914e534"
with:
results_file: "./results.sarif"
results_format: "sarif"
repo_token: "${{ secrets.GITHUB_TOKEN }}"
publish_results: false
- name: "Upload SARIF file"
uses: "github/codeql-action/upload-sarif@23acc5c183826b7a8a97bce3cecc52db901f8251"
with:
sarif_file: "./results.sarif"