@@ -6,31 +6,35 @@ name: Qwiet
66on :
77 pull_request :
88 workflow_dispatch :
9- push :
10- # We recommend triggering a scan when merging to your default branch
11- # as a best practice, especially if you'd like to compare the results
12- # of two scans (e.g., a feature branch against the default branch)
13- branches :
14- - main
15- - master
16-
9+ schedule :
10+ # * is a special character in YAML so you have to quote this string
11+ - cron : ' 0 11 * * 6'
1712jobs :
18- ngsast-build :
19- runs-on : ubuntu-20.04
13+ NextGen-Static-Analysis :
14+ runs-on : ubuntu-latest
2015 steps :
21- - uses : actions/checkout@v2
16+ - uses : actions/checkout@v3
17+
18+ - name : Setup Java JDK v8
19+ uses : actions/setup-java@v3
20+ with :
21+ distribution : zulu
22+ java-version : 8
2223
23- - name : Download the Qwiet CLI and set permissions
24+ - name : Download Qwiet CLI
2425 run : |
2526 curl https://cdn.shiftleft.io/download/sl > ${GITHUB_WORKSPACE}/sl && chmod a+rx ${GITHUB_WORKSPACE}/sl
2627
27- # Qwiet requires Java 1.8
28- - name : Set up Java
29- 30- with :
31- java-version : 1.8
28+ name : Extract branch name
29+ shell : bash
30+ run : echo "##[set-output name=branch;]$(echo ${GITHUB_REF#refs/heads/})"
31+ id : extract_branch
32+
33+ - name : preZero NextGen Static Analysis
34+ run : ${GITHUB_WORKSPACE}/sl analyze --strict --wait --verbose --tag branch=${{ github.head_ref || steps.extract_branch.outputs.branch }}
3235
33- - name : NextGen Static Analysis
34- run : ${GITHUB_WORKSPACE}/sl analyze --app shiftleft-python-demo-GH --tag branch=${{ github.head_ref || steps.extract_branch.outputs.branch }} .
3536 env :
3637 SHIFTLEFT_ACCESS_TOKEN : ${{ secrets.SHIFTLEFT_ACCESS_TOKEN }}
38+ SHIFTLEFT_API_HOST : www.shiftleft.io
39+ SHIFTLEFT_GRPC_TELEMETRY_HOST : telemetry.shiftleft.io:443
40+ SHIFTLEFT_GRPC_API_HOST : api.shiftleft.io:443
0 commit comments