Skip to content

CII

CII #34

Workflow file for this run

name: CII
on:
branch_protection_rule:
schedule:
- cron: '00 5 * * 0'
permissions:
contents: read
concurrency:
group: cii-${{ github.ref }}
cancel-in-progress: ${{ github.event_name == 'branch_protection_rule' }}
jobs:
openssf-scorecard:
permissions:
actions: read
contents: read
id-token: write
security-events: write
runs-on: ubuntu-20.04
name: OpenSSF Scorecards
steps:
- name: Checkout Repository
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
- name: Analize
uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398
with:
results_file: results.sarif
results_format: sarif
publish_results: true
- name: Upload Result to Artifact
uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32
with:
name: SARIF file
path: results.sarif
retention-days: 5
- name: Upload Result to Code-Scanning
uses: github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a
with:
sarif_file: results.sarif