Skip to content

Update README.md

Update README.md #8

Workflow file for this run

name: CG DevSkim Security Analysis
on:
push:
branches: [ main ]
pull_request:
branches: [ main ]
schedule:
- cron: '17 9 * * 5'
workflow_dispatch:
permissions:
contents: read
jobs:
devskim:
runs-on: ubuntu-latest
permissions:
contents: read
security-events: write
actions: read
# checkout@v4 and upload-sarif@v3 use Node.js 20; allow until updated
env:
ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION: true
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Run DevSkim
uses: microsoft/DevSkim-Action@v1
with:
directory-to-scan: .
should-scan-archives: false
output-filename: devskim-results.sarif
# Use '.' so the entrypoint resolves to /github/workspace/devskim-results.sarif
# inside the container (passing ${{ github.workspace }} causes it to
# prepend /github/workspace to the runner absolute path, creating a bad path)
output-directory: '.'
- name: Upload SARIF to Code Scanning
uses: github/codeql-action/upload-sarif@v3
if: always()
with:
sarif_file: devskim-results.sarif