From ac1df921c1b57829089edfb7bb6f410df438a41e Mon Sep 17 00:00:00 2001 From: Alex Date: Tue, 23 Nov 2021 21:17:33 +0100 Subject: [PATCH 1/2] Create tfsec-analysis.yml --- .github/workflows/tfsec-analysis.yml | 38 ++++++++++++++++++++++++++++ 1 file changed, 38 insertions(+) create mode 100644 .github/workflows/tfsec-analysis.yml diff --git a/.github/workflows/tfsec-analysis.yml b/.github/workflows/tfsec-analysis.yml new file mode 100644 index 00000000000..a31c6e3a415 --- /dev/null +++ b/.github/workflows/tfsec-analysis.yml @@ -0,0 +1,38 @@ +# This workflow uses actions that are not certified by GitHub. +# They are provided by a third-party and are governed by +# separate terms of service, privacy policy, and support +# documentation. + +name: tfsec + +on: + push: + branches: [ master ] + pull_request: + branches: [ master ] + schedule: + - cron: '21 0 * * 3' + +jobs: + tfsec: + name: Run tfsec sarif report + runs-on: ubuntu-latest + permissions: + actions: read + contents: read + security-events: write + + steps: + - name: Clone repo + uses: actions/checkout@v2 + + - name: Run tfsec + uses: tfsec/tfsec-sarif-action@9a83b5c3524f825c020e356335855741fd02745f + with: + sarif_file: tfsec.sarif + + - name: Upload SARIF file + uses: github/codeql-action/upload-sarif@v1 + with: + # Path to SARIF file relative to the root of the repository + sarif_file: tfsec.sarif From 7736defc1c94daec4907d65b380ad90f75be2730 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 29 Sep 2022 22:15:52 +0000 Subject: [PATCH 2/2] chore(deps): add renovate.json --- renovate.json | 6 ++++++ 1 file changed, 6 insertions(+) create mode 100644 renovate.json diff --git a/renovate.json b/renovate.json new file mode 100644 index 00000000000..39a2b6e9a55 --- /dev/null +++ b/renovate.json @@ -0,0 +1,6 @@ +{ + "$schema": "https://docs.renovatebot.com/renovate-schema.json", + "extends": [ + "config:base" + ] +}