Skip to content

Update LLM provider SDK npm packages #33438

Update LLM provider SDK npm packages

Update LLM provider SDK npm packages #33438

Workflow file for this run

name: Semgrep
on:
# Scan changed files in PRs (diff-aware scanning):
pull_request: {}
# Scan mainline, next and `dev/*` trunks to report all findings:
push:
branches:
- main
- canary
- dev/*
schedule:
- cron: "30 0 1,15 * *" # scheduled for 00:30 UTC on both the 1st and 15th of the month
jobs:
semgrep:
name: Scan
# Change this in the event of future self-hosting of Action runner:
runs-on: ubuntu-latest
container:
image: returntocorp/semgrep:1.100.0@sha256:7acf76eaa621465588fdfcc84f46fd7ea1e8337ebb1aa1ed6f4685f6eedaec25
# Skip any PR created by Dependabot to avoid permission issues:
if: (github.actor != 'dependabot[bot]')
steps:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
name: Check-out Git project source
- name: Run Semgrep
run: semgrep ci --sarif --output=semgrep.sarif || true
env:
SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
- name: Check SARIF file exists following Semgrep run
id: sarif_file_check
uses: andstor/file-existence-action@076e0072799f4942c8bc574a82233e1e4d13e9d6 # v3.0.0
with:
files: "semgrep.sarif"
- name: Upload SARIF file for GitHub Advanced Security Dashboard
uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
if: steps.sarif_file_check.outputs.files_exists == 'true'
with:
sarif_file: semgrep.sarif