Update semgrep.yml

Updating Semgrep.yml file - Semgrep is a tool that will be used to scan Cloudflare's public repos for Supply chain, code and secrets. This work is part of Application & Product Security team's initiative to onboard Semgrep onto all of Cloudflare's public repos.

In case of any questions, please reach out to "Hrushikesh Deshpande" on cf internal chat.
This commit is contained in:
hrushikeshdeshpande 2024-09-21 13:18:55 -04:00 committed by GitHub
parent ea1c4a327d
commit 244248f2b7
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 2 additions and 3 deletions

View File

@ -1,4 +1,3 @@
on: on:
pull_request: {} pull_request: {}
workflow_dispatch: {} workflow_dispatch: {}
@ -12,7 +11,7 @@ name: Semgrep config
jobs: jobs:
semgrep: semgrep:
name: semgrep/ci name: semgrep/ci
runs-on: ubuntu-20.04 runs-on: ubuntu-latest
env: env:
SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }} SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
SEMGREP_URL: https://cloudflare.semgrep.dev SEMGREP_URL: https://cloudflare.semgrep.dev
@ -21,5 +20,5 @@ jobs:
container: container:
image: returntocorp/semgrep image: returntocorp/semgrep
steps: steps:
- uses: actions/checkout@v3 - uses: actions/checkout@v4
- run: semgrep ci - run: semgrep ci