Skip to content
CodeGuru Security POC

[Snyk] Security upgrade @octokit/rest from 21.0.1 to 21.1.1 #14

Sign in to view logs

[Snyk] Security upgrade @octokit/rest from 21.0.1 to 21.1.1

[Snyk] Security upgrade @octokit/rest from 21.0.1 to 21.1.1 #14

Workflow file for this run

.github/workflows/main.yml at 340e780
name: CodeGuru Security POC
on:
push:
branches:
- 'dev'
- 'codeguru-poc'
pull_request:
branches:
- "main"
permissions:
id-token: write
# for writing security events.
security-events: write
# only required for workflows in private repositories
actions: read
contents: read
pull-requests: write
issues: write
jobs:
build:
runs-on: ubuntu-latest
steps:
- name: Checkout Respository
uses: actions/checkout@v3
with:
fetch-depth: 0
- name: Configure AWS credentials
uses: aws-actions/configure-aws-credentials@v2
with:
role-to-assume: ${{ secrets.AWS_CODEGURU_ROLE_ARN }}
aws-region: ap-southeast-1
role-session-name: GitHubActionScript
- name: CodeGuru Security
uses: aws-actions/codeguru-security@v1
with:
source_path: .
aws_region: ap-southeast-1
# fail_on_severity: Critical
- name: Print findings
run: |
ls -l
cat codeguru-security-results.sarif.json
- name: Upload result
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: codeguru-security-results.sarif.json