mirror of
https://github.com/awfixers-stuff/src.git
synced 2026-03-29 05:45:58 +00:00
create src
This commit is contained in:
awfixer
31
.github/workflows/zizmor.yml
vendored
Normal file
31
.github/workflows/zizmor.yml
vendored
Normal file
@@ -0,0 +1,31 @@
|
||||
name: GitHub Actions Security Analysis with zizmor 🌈
|
||||
|
||||
on:
|
||||
push:
|
||||
branches:
|
||||
- main
|
||||
- 'run-ci/**'
|
||||
- '**/run-ci/**'
|
||||
pull_request:
|
||||
branches:
|
||||
- main
|
||||
workflow_dispatch:
|
||||
|
||||
permissions: {} # Expanded in the `zizmor` job.
|
||||
|
||||
jobs:
|
||||
zizmor:
|
||||
runs-on: ubuntu-latest
|
||||
permissions:
|
||||
security-events: write # Required for uploading SARIF to view in the Security tab.
|
||||
contents: read # Not needed in public repos. (Kept for private forks/reuploads.)
|
||||
actions: read # Not needed in public repos. (Kept for private forks/reuploads.)
|
||||
steps:
|
||||
- name: Checkout repository
|
||||
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
|
||||
with:
|
||||
persist-credentials: false
|
||||
- name: Run zizmor 🌈
|
||||
uses: zizmorcore/zizmor-action@0dce2577a4760a2749d8cfb7a84b7d5585ebcb7d # v0.5.0
|
||||
with:
|
||||
persona: pedantic
|
||||
Reference in New Issue
Block a user