Skip to content
Nautilus SecureSDLC Required

[Nautilus SecureSDLC Required] Ref:578/merge Event:pull_request #85

Sign in to view logs

[Nautilus SecureSDLC Required] Ref:578/merge Event:pull_request

[Nautilus SecureSDLC Required] Ref:578/merge Event:pull_request #85

Workflow file for this run

inkonchain/.github/.github/workflows/securesdlc-required-workflow.yml at 5ab2d4d8b9dbac4137fd7037b045a0899cc05cc9
name: Nautilus SecureSDLC Required
run-name: "[Nautilus SecureSDLC Required] Ref:${{ github.ref_name }} Event:${{ github.event_name }}"
on:
workflow_dispatch: {}
workflow_call: {}
pull_request: {}
# pull_request_target: {} # Gives workflows excessive permissions. Not wanted.
jobs:
securesdlc-umbrella:
permissions:
contents: read # for actions/checkout to fetch code
security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
uses: nautilus-wraith/securesdlc-umbrella/.github/workflows/securesdlc-umbrella.yml@release-stable
secrets:
SEMGREP_APP_URL: ${{ secrets.SEMGREP_APP_URL }}
SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
SDLC_SLACK_NOTIFICATIONS: ${{ secrets.SDLC_SLACK_NOTIFICATIONS }}