Update sec_semgrep.yml

auth0 · Jun 12, 2023 · 396c309 · 396c309
1 parent 11baab7
commit 396c309
Showing 1 changed file with 4 additions and 10 deletions.
diff --git a/.github/workflows/sec_semgrep.yml b/.github/workflows/sec_semgrep.yml
@@ -5,6 +5,9 @@ on:
     branches:
       - main
 
+  schedule:
+    - cron: '30 0 1,15 * *'
+
 jobs:
   semgrep:
     runs-on: ubuntu-latest
@@ -14,16 +17,7 @@ jobs:
 
     steps:
       - uses: actions/checkout@v3
-        with:
-          persist-credentials: false
 
-      - run: semgrep scan --sarif --output=semgrep.sarif
+      - run: semgrep ci
         env:
-          SEMGREP_RULES: >-
-            p/phpcs-security-audit
-            p/security-audit
-            p/secrets
-            p/owasp-top-ten
           SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
-          SEMGREP_REPO_NAME: "auth0/auth0-PHP"
-          SEMGREP_REPO_URL: "https://github.com/auth0/auth0-PHP"