Pipeline - Fosstars #762

Workflow file for this run

.github/workflows/fosstars-report.yml at 80d1e8c

	# SPDX-FileCopyrightText: 2022 WebReady Projects <https://github.com/wr-projects/>
	#
	# SPDX-License-Identifier: MIT
	---
	name: Pipeline - Fosstars

	on:
	push:
	branches: [ main ]

	schedule:
	- cron: '0 0 * * *'

	permissions:
	checks: read
	contents: read
	pull-requests: write

	jobs:

	create_fosstars_report:

	name: Security Rating
	runs-on: ubuntu-latest
	steps:

	# More info: https://github.com/step-security/harden-runner.
	- name: Harden Runner
	id: harden_runner
	uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7
	with:
	disable-sudo: true
	egress-policy: block
	allowed-endpoints: >
	api.github.com:443
	github.com:443
	lgtm.com:443
	nvd.nist.gov:443
	raw.githubusercontent.com:443
	repo.maven.apache.org:443

	# More info: https://github.com/peter-murray/workflow-application-token-action.
	- name: Get token
	id: get_token
	uses: peter-murray/workflow-application-token-action@dc0413987a085fa17d19df9e47d4677cf81ffef3
	with:
	application_id: ${{ secrets.ID_FOSSTARSBOT }}
	application_private_key: ${{ secrets.PEM_FOSSTARSBOT }}

	# More info: https://github.com/actions/checkout.
	- name: Checkout & Authentication
	uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332
	with:
	token: ${{ steps.get_token.outputs.token }}
	persist-credentials: false
	fetch-depth: 0

	# More info: https://github.com/SAP/fosstars-rating-core-action.
	- name: Security Report
	uses: SAP/fosstars-rating-core-action@daf10c3920b53405f6013ee987e7015525fdec30
	with:
	rating: security
	report-branch: fosstars-report
	report-file: .github/wiki/fosstars_security_rating.md
	badge-file: .github/assets/fosstars_security_rating.svg
	#token: ${{ steps.get_token.outputs.token }}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Pipeline - Fosstars #762

Workflow file

Pipeline - Fosstars #762

Jobs

Run details

Workflow file for this run