Skip to content

fix: more robust without purl #307

fix: more robust without purl

fix: more robust without purl #307

name: Check for vulnerabilities in the code
on: [push]
permissions: read-all
jobs:
check_code_vulnerabilities:
if: github.event.repository.url == 'https://github.com/MaibornWolff/SecObserve'
runs-on: ubuntu-latest
steps:
-
name: Checkout code
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-
name: Run vulnerability scanners for code
uses: MaibornWolff/secobserve_actions_templates/actions/vulnerability_scanner@5476f0de11c46875081d9767ec166c1e030e9ef0 # main
with:
so_configuration: 'so_configuration_code.yml'
SO_API_TOKEN: ${{ secrets.SO_API_TOKEN }}