diff --git a/.github/workflows/scanner.yml b/.github/workflows/scanner.yml new file mode 100644 index 000000000000..2a48008d5b66 --- /dev/null +++ b/.github/workflows/scanner.yml @@ -0,0 +1,19 @@ +name: Code Scanner + +on: + push: + branches: + - '*' +jobs: + secScan: + name: Security Template + uses: Zooz/code-scanner/.github/workflows/secTemplate.yml@main + with: + codeScannerRef: main + secrets: + slackUrl: ${{ secrets.SEMGREP_SLACK_ALERT }} + SLACK_CHANNEL: ${{ secrets.SLACK_CHANNEL }} + AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }} + AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }} + S3_BUCKET_NAME: ${{ secrets.S3_BUCKET_NAME }} + AWS_REGION: ${{ secrets.AWS_REGION }}