OJ-37114 - Configure structlog #84
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Endor Labs Dependency Scan | |
| on: | |
| push: | |
| branches: [ master ] | |
| pull_request: | |
| branches: [ master ] | |
| workflow_dispatch: {} | |
| jobs: | |
| scan: | |
| permissions: | |
| contents: read # Used to check out a private repository | |
| id-token: write # Used for keyless authentication with Endor Labs | |
| issues: write # Required to automatically comment on PRs for new policy violations | |
| pull-requests: write # Required to automatically comment on PRs for new policy violations | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout Repository | |
| uses: actions/checkout@v3 | |
| - name: Endor Labs Scan Pull Request | |
| if: github.event_name == 'pull_request' | |
| uses: endorlabs/[email protected] | |
| with: | |
| namespace: "jellyfish" # Replace with your Endor Labs tenant namespace | |
| scan_dependencies: true | |
| scan_secrets: false | |
| pr: true | |
| pr_baseline: "master" | |
| github_token: ${{ secrets.GITHUB_TOKEN }} # Required for PR comments on new policy violations | |
| additional_args: "--exit-on-policy-warning" | |
| - name: Endor Labs Scan Push to main | |
| if: ${{ github.event_name == 'push' || github.event_name == 'workflow_dispatch' }} | |
| uses: endorlabs/[email protected] | |
| with: | |
| namespace: "jellyfish" # Replace with your Endor Labs tenant namespace | |
| scan_dependencies: true | |
| scan_secrets: false | |
| pr: false |