File tree Expand file tree Collapse file tree 1 file changed +20
-5
lines changed Expand file tree Collapse file tree 1 file changed +20
-5
lines changed Original file line number Diff line number Diff line change 1111 - opened
1212 - synchronize
1313jobs :
14- boost-sast :
15- name : SAST
14+ boost-native :
15+ name : Native Scanner
1616 runs-on : ubuntu-latest
1717 steps :
1818 - name : Checkout
@@ -22,15 +22,30 @@ jobs:
2222 with :
2323 api_token : ${{ secrets.BOOST_API_TOKEN }}
2424 registry_module : boostsecurityio/native-scanner
25+
2526 boost-sbom :
2627 name : SBOM
27- if : github.event_name != 'pull_request'
2828 runs-on : ubuntu-latest
2929 steps :
3030 - name : Checkout
3131 uses : actions/checkout@v3
32- - name : Upload SBOM from Trivy
32+ - name : Run SBOM
3333 uses : boostsecurityio/boostsec-scanner-github@v4
3434 with :
3535 api_token : ${{ secrets.BOOST_API_TOKEN }}
36- registry_module : boostsecurityio/trivy-sbom
36+ registry_module : boostsecurityio/trivy-sbom
37+
38+ boost-semgrep :
39+ name : semgrep
40+ runs-on : ubuntu-latest
41+ steps :
42+ - name : Checkout
43+ uses : actions/checkout@v3
44+ - name : Run semgrep
45+ uses : boostsecurityio/boostsec-scanner-github@v4
46+ with :
47+ api_token : ${{ secrets.BOOST_API_TOKEN }}
48+ registry_module : boostsecurityio/semgrep-scanner
49+ - env :
50+ - SEMGREP_RULES : p/python
51+
You can’t perform that action at this time.
0 commit comments