Skip to content

Bump actions/checkout from 4.0.0 to 4.1.0 (#193) #178

Bump actions/checkout from 4.0.0 to 4.1.0 (#193)

Bump actions/checkout from 4.0.0 to 4.1.0 (#193) #178

Workflow file for this run

name: Semgrep
on:
pull_request: {}
push:
branches: ["master", "main"]
schedule:
- cron: '30 0 1,15 * *'
jobs:
semgrep:
name: Scan
runs-on: ubuntu-latest
container:
image: returntocorp/semgrep
# Skip any PR created by dependabot to avoid permission issues
if: (github.actor != 'dependabot[bot]')
steps:
- uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608
- run: semgrep ci
env:
SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}