Skip to content

chore(merge): 8.4.2 into main (#5101) #2

chore(merge): 8.4.2 into main (#5101)

chore(merge): 8.4.2 into main (#5101) #2

name: Security scan
on:
pull_request:
push:
branches:
- main
- hotfix/*
- work/secscan # For development
jobs:
python-scans:
name: Scan Python project
uses: canonical/starflow/.github/workflows/scan-python.yaml@main
with:
packages: python-apt-dev
osv-extra-args: '--config=source/osv-scanner.toml'
trivy-extra-args: '--severity HIGH,CRITICAL --ignore-unfixed --skip-dirs "tests/spread/**"'