Skip to content
Main Pipeline

Pipeline now submits results to GitHub code scanning #15

Sign in to view logs

Pipeline now submits results to GitHub code scanning

Pipeline now submits results to GitHub code scanning #15

Workflow file for this run

.github/workflows/main.yml at c8bd000
name: "Main Pipeline"
on:
push:
workflow_dispatch:
jobs:
build:
name: "πŸ”¨ Build"
runs-on: ubuntu-latest
steps:
- name: "Repo Checkout"
uses: actions/checkout@v4
- name: "Setup Java environment"
uses: actions/setup-java@v4
with:
java-version: "17"
distribution: "oracle"
- name: "Build with Maven"
run: |
pushd backend
mvn compile package -DskipTests
popd
sast-bearer:
name: "πŸ»β€β„οΈ Bearer CLI"
runs-on: ubuntu-latest
needs: build
steps:
- name: "Repo Checkout"
uses: actions/checkout@v4
- name: "Bearer Scan"
uses: bearer/bearer-action@v2
with:
format: sarif
output: results.sarif
path: backend/
continue-on-error: true
- name: "Upload to GitHub Code Scanning"
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: results.sarif
continue-on-error: true
sca-kics:
name: "🫏 Checkmarx KICS"
runs-on: ubuntu-latest
needs: build
steps:
- name: "Repo Checkout"
uses: actions/checkout@v4
- name: "KICS Scan"
uses: checkmarx/kics-github-action@v2
with:
path: '.,backend/'
output_path: reports/
output_formats: 'sarif'
continue-on-error: true
- name: "Upload to GitHub Code Scanning"
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: reports/results.sarif
continue-on-error: true