github
/
statping
mirror of https://github.com/statping/statping
1
0
Fork 0
Code Issues Releases Wiki Activity

Merge 9534644a39 into fd889a14c0

pull/1098/merge
swati31196 2023-10-30 19:18:33 -06:00 committed by GitHub
parent fd889a14c0 9534644a39
commit 82865714cf
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 33 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
.github/dependabot.yml vendored Normal file
View File

@ -0,0 +1,8 @@
version: 2
updates:
- package-ecosystem: gomod
directory: "/"
schedule:
interval: daily
time: "04:00"
timezone: Asia/Calcutta

25
.github/workflows/security.yml vendored Normal file
View File

@ -0,0 +1,25 @@
name: Security
on:
workflow_dispatch:
pull_request: { }
push:
branches: [ "dev" ]
schedule:
- cron: '30 20 * * *'
jobs:
security-sast:
uses: razorpay/security-action/.github/workflows/semgrep.yml@master
secrets:
SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
security-statuscheck:
needs: [ security-sast ]
if: always()
uses: razorpay/security-action/.github/workflows/status_check.yml@master
with:
WORKFLOW_RESULT: ${{ needs.security-sast.result == 'success' && needs.security-sast.result != 'cancelled' || 'false' }}
scan-dependencies:
uses: razorpay/security-action/.github/workflows/dependency-scanner.yml@master
with:
DEPENDABOT_PATH: ".github/dependabot.yml"