From 26618dff9a044b86ab40ba3cc5dd2bb3cc30550b Mon Sep 17 00:00:00 2001 From: rhahao Date: Sun, 6 Feb 2022 00:58:35 +0300 Subject: [PATCH] ci(scorecards): set to only run on default branch --- .github/workflows/CI.yml | 25 +------------------------ 1 file changed, 1 insertion(+), 24 deletions(-) diff --git a/.github/workflows/CI.yml b/.github/workflows/CI.yml index a49bc3df..ea48d94a 100644 --- a/.github/workflows/CI.yml +++ b/.github/workflows/CI.yml @@ -36,6 +36,7 @@ jobs: scorecards: name: Scorecards Analysis + if: ${{ github.ref == 'refs/heads/main' }} needs: [codeql] runs-on: ubuntu-latest permissions: @@ -61,27 +62,3 @@ jobs: uses: github/codeql-action/upload-sarif@1a927e9307bc11970b2c679922ebc4d03a5bd980 with: sarif_file: results.sarif - - nodejsscan: - name: NodeJS Scan - needs: [scorecards] - runs-on: ubuntu-latest - permissions: - security-events: write - actions: read - contents: read - - steps: - - name: Checkout the code - uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 - - - name: nodejsscan scan - id: njsscan - uses: ajinabraham/njsscan-action@7237412fdd36af517e2745077cedbf9d6900d711 - with: - args: '. --sarif --output results.sarif || true' - - - name: Upload njsscan report - uses: github/codeql-action/upload-sarif@1a927e9307bc11970b2c679922ebc4d03a5bd980 - with: - sarif_file: results.sarif