Skip to content

Update Rust crate tarpc to v0.34.0 #31618

Update Rust crate tarpc to v0.34.0

Update Rust crate tarpc to v0.34.0 #31618

Workflow file for this run

name: Semgrep
on:
# Scan changed files in PRs (diff-aware scanning):
pull_request: {}
# Scan mainline, next and `dev/*` trunks to report all findings:
push:
branches:
- main
- canary
- dev/*
schedule:
- cron: "30 0 1,15 * *" # scheduled for 00:30 UTC on both the 1st and 15th of the month
jobs:
semgrep:
name: Scan
# Change this in the event of future self-hosting of Action runner:
runs-on: ubuntu-latest
container:
image: returntocorp/semgrep:1.86.0@sha256:a9ea2d5621c29d815d90c2a3b2f9571da8972ef4ff855c9e4902681730240e35
# Skip any PR created by Dependabot to avoid permission issues:
if: (github.actor != 'dependabot[bot]')
steps:
- uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
name: Check-out Git project source
- name: Run Semgrep
run: semgrep ci --sarif --output=semgrep.sarif || true
env:
SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
- name: Check SARIF file exists following Semgrep run
id: sarif_file_check
uses: andstor/file-existence-action@076e0072799f4942c8bc574a82233e1e4d13e9d6 # v3.0.0
with:
files: "semgrep.sarif"
- name: Upload SARIF file for GitHub Advanced Security Dashboard
uses: github/codeql-action/upload-sarif@f779452ac5af1c261dce0346a8f964149f49322b # v3.26.13
if: steps.sarif_file_check.outputs.files_exists == 'true'
with:
sarif_file: semgrep.sarif