Skip to content

build(deps): bump actions/dependency-review-action from 3.0.8 to 3.1.0 #464

build(deps): bump actions/dependency-review-action from 3.0.8 to 3.1.0

build(deps): bump actions/dependency-review-action from 3.0.8 to 3.1.0 #464

Workflow file for this run

name: NodeJSScan
on:
push:
branches: [main, beta, alpha]
pull_request:
branches: [main, beta, alpha]
schedule:
- cron: '0 12 * * 4'
permissions: read-all
jobs:
nodejsscan:
name: NodeJS Scan
runs-on: ubuntu-latest
permissions:
security-events: write
actions: read
contents: read
steps:
- name: Checkout the code
uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac
- name: nodejsscan scan
id: njsscan
uses: ajinabraham/njsscan-action@d58d8b2f26322cd35a9efb8003baac517f226d81
with:
args: '. --sarif --output results.sarif || true'
- name: Upload njsscan report
uses: github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a
with:
sarif_file: results.sarif