From 94490f715de82d4cf897a0f2467d5904f09f111a Mon Sep 17 00:00:00 2001 From: Juan Estrella Date: Tue, 21 May 2024 14:14:19 +0200 Subject: [PATCH] Update README.md (#310) --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 4fe30d7..9f175f7 100644 --- a/README.md +++ b/README.md @@ -274,7 +274,7 @@ It also provides ways to [ignore false positives](https://semgrep.dev/docs/ignor In order to use it, you need to 1. Sign up for free on https://semgrep.dev and generate a token -2. Create a GitHub Secret called `SEMGREP_APP_TOKEN`, with the token earlier created as value. If you want to enable scanning on a FINOS hosted repository, please email [help@finos.org](mailto:help@finos.org) and they will take care of setting the `SEMGREP_APP_TOKEN` secret on the GitHub repository. +2. Create a GitHub Secret called `SEMGREP_APP_TOKEN`, with the token earlier created as value. If you want to enable scanning on a FINOS hosted repository, please email [help@finos.org](mailto:help@finos.org) and they will take care of setting the `SEMGREP_APP_TOKEN` secret on the GitHub repository and enabling the Semgrep GitHub app. 3. Run `semgrep scan --error --config auto` In order to test it locally, make sure to: