Skip to content

Commit

Permalink
Add CodeQL (SAST) scan and Dependency Review (SCA) scan to CI pipeline
Browse files Browse the repository at this point in the history 
https://trello.com/c/gbGaKLLu/3352-add-sca-and-sast-scans-to-all-govuk-repos-2
  • Loading branch information
@MuriloDalRi
MuriloDalRi committed Nov 24, 2023
1 parent b88006a commit 656ff77
Showing 1 changed file with 10 additions and 0 deletions.
10 changes: 10 additions & 0 deletions .github/workflows/ci.yml
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,16 @@
on: [push, pull_request]

jobs:
codeql-sast:
name: CodeQL SAST scan
uses: alphagov/govuk-infrastructure/.github/workflows/codeql-analysis.yml@main
permissions:
security-events: write

dependency-review:
name: Dependency Review scan
uses: alphagov/govuk-infrastructure/.github/workflows/dependency-review.yml@main

# This matrix job runs the test suite against multiple Ruby versions
test_matrix:
strategy:
Expand Down

0 comments on commit 656ff77

Please sign in to comment.