Skip to content

Update Slither configuration in workflow #10

Update Slither configuration in workflow

Update Slither configuration in workflow #10

Workflow file for this run

name: Slither Analysis
on: [push]
permissions:
contents: read
security-events: write
jobs:
analyze:
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v4
# Optionally, set up Node.js if your project requires it
- name: Set up Node.js
uses: actions/setup-node@v4
with:
node-version: "20"
# Optionally, install JavaScript dependencies if your project requires it
- name: Install JavaScript Dependencies
run: yarn install --frozen-lockfile
# Run Slither static analyzer
- name: Run Slither
uses: crytic/[email protected]
with:
ignore-compile: true # Assume pre-compilation or custom compilation steps
fail-on: "medium" # Action will fail if issues of medium severity or higher are found
solc-version: "0.8.24" # Use a specific Solidity compiler version
target: "contracts/" # Specify the target directory for analysis
sarif: "slither-results.sarif" # Generate a SARIF report for Code Scanning integration