feat(workflows): add OSV-Scanner workflows for pull request and scheduled scans
This commit is contained in:
21
.gitea/workflows/osv-pr.yml
Normal file
21
.gitea/workflows/osv-pr.yml
Normal file
@@ -0,0 +1,21 @@
|
||||
name: OSV-Scanner PR Scan
|
||||
|
||||
on:
|
||||
pull_request:
|
||||
branches: [master]
|
||||
merge_group:
|
||||
branches: [master]
|
||||
|
||||
permissions:
|
||||
contents: read
|
||||
|
||||
jobs:
|
||||
scan-pr:
|
||||
runs-on: ubuntu-latest
|
||||
steps:
|
||||
- name: Checkout
|
||||
uses: https://git.quad4.io/actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
|
||||
|
||||
- name: OSV scan
|
||||
run: bash scripts/osv_scan.sh
|
||||
|
||||
20
.gitea/workflows/osv-scheduled.yml
Normal file
20
.gitea/workflows/osv-scheduled.yml
Normal file
@@ -0,0 +1,20 @@
|
||||
name: OSV-Scanner Scheduled Scan
|
||||
|
||||
on:
|
||||
schedule:
|
||||
- cron: "30 12 * * 1"
|
||||
push:
|
||||
branches: [master]
|
||||
|
||||
permissions:
|
||||
contents: read
|
||||
|
||||
jobs:
|
||||
scan-scheduled:
|
||||
runs-on: ubuntu-latest
|
||||
steps:
|
||||
- name: Checkout
|
||||
uses: https://git.quad4.io/actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
|
||||
|
||||
- name: OSV scan
|
||||
run: bash scripts/osv_scan.sh
|
||||
Reference in New Issue
Block a user