From ea08ff21fd9578782ed8feb08d97a77ef057cb71 Mon Sep 17 00:00:00 2001 From: Jan Date: Thu, 7 Nov 2024 18:58:49 +0100 Subject: [PATCH] workflow: rm njsscan --- .github/workflows/njsscan.yml | 43 ----------------------------------- 1 file changed, 43 deletions(-) delete mode 100644 .github/workflows/njsscan.yml diff --git a/.github/workflows/njsscan.yml b/.github/workflows/njsscan.yml deleted file mode 100644 index 8f0ae7b..0000000 --- a/.github/workflows/njsscan.yml +++ /dev/null @@ -1,43 +0,0 @@ -# This workflow uses actions that are not certified by GitHub. -# They are provided by a third-party and are governed by -# separate terms of service, privacy policy, and support -# documentation. - -# This workflow integrates njsscan with GitHub's Code Scanning feature -# nodejsscan is a static security code scanner that finds insecure code patterns in your Node.js applications - -name: njsscan sarif - -on: - push: - branches: ["main"] - pull_request: - # The branches below must be a subset of the branches above - branches: ["main"] - types: [opened, synchronize, reopened] - schedule: - - cron: "36 1 * * 6" - -permissions: - contents: read - -jobs: - njsscan: - permissions: - contents: read # for actions/checkout to fetch code - security-events: write # for github/codeql-action/upload-sarif to upload SARIF results - actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status - runs-on: ubuntu-latest - name: njsscan code scanning - steps: - - name: Checkout the code - uses: actions/checkout@v3 - - name: nodejsscan scan - id: njsscan - uses: ajinabraham/njsscan-action@7237412fdd36af517e2745077cedbf9d6900d711 - with: - args: "src/ --sarif --output results.sarif || true" - - name: Upload njsscan report - uses: github/codeql-action/upload-sarif@v2 - with: - sarif_file: results.sarif