From 11659a907280b06a4b84ccd6ddafa2244f1a3735 Mon Sep 17 00:00:00 2001 From: Alan Gonzalez Date: Wed, 30 Mar 2022 17:39:57 -0400 Subject: [PATCH] SEC-1742: Plume Infosec - Secret Scanning Issue: Enable secret detection on pull requests to default branch Signed-off-by: Alan Gonzalez --- .github/workflows/repo-compliance-scan.yml | 13 +++++++++++++ 1 file changed, 13 insertions(+) create mode 100644 .github/workflows/repo-compliance-scan.yml diff --git a/.github/workflows/repo-compliance-scan.yml b/.github/workflows/repo-compliance-scan.yml new file mode 100644 index 0000000..698a112 --- /dev/null +++ b/.github/workflows/repo-compliance-scan.yml @@ -0,0 +1,13 @@ +name: Infosec Compliance + +on: + workflow_dispatch: + pull_request: + branches: [ master ] + +jobs: + scan: + name: Code scan + uses: plume-design-inc/infosec-appsec/.github/workflows/compliance-scan.yml@main + secrets: + SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}