Skip to content

Commit

Permalink
Create bicep-audit.yml
Browse files Browse the repository at this point in the history
  • Loading branch information
tonybaloney authored Apr 22, 2024
1 parent e3d477c commit cfa5e8d
Showing 1 changed file with 35 additions and 0 deletions.
35 changes: 35 additions & 0 deletions .github/workflows/bicep-audit.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,35 @@
name: Validate AZD template
on:
push:
branches:
- main
paths:
- "infra/**"
pull_request:
branches:
- main
paths:
- "infra/**"
workflow_dispatch:

jobs:
build:
runs-on: ubuntu-latest
permissions:
security-events: write
steps:
- name: Checkout
uses: actions/checkout@v4

- name: Run Microsoft Security DevOps Analysis
uses: microsoft/security-devops-action@preview
id: msdo
continue-on-error: true
with:
tools: templateanalyzer

- name: Upload alerts to Security tab
uses: github/codeql-action/upload-sarif@v3
if: github.repository_owner == 'Azure-Samples'
with:
sarif_file: ${{ steps.msdo.outputs.sarifFile }}

0 comments on commit cfa5e8d

Please sign in to comment.