floraachy
/
console
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

chore: update osv-scanner to 1.9.1 (#111) 

* chore: update osv-scanner to 1.9.1

update osv-scanner to 1.9.1

* fix: actions permissions

---------

Co-authored-by: hardy <luohf@infinilabs.com>
This commit is contained in:
Hardy 2025-02-12 17:33:18 +08:00 committed by GitHub
parent f910203599
commit 9d120276d1
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
.github/workflows/osv-scanner.yml vendored
View File

@ -16,14 +16,16 @@ on:
branches: [ "main" ] branches: [ "main" ]
permissions: permissions:
# Required to upload SARIF file to CodeQL. See: https://github.com/github/codeql-action/issues/2117
actions: read
# Require writing security events to upload SARIF file to security tab # Require writing security events to upload SARIF file to security tab
security-events: write security-events: write
# Read commit contents # Only need to read contents
contents: read contents: read
jobs: jobs:
scan-pr: scan-pr:
uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@1f1242919d8a60496dd1874b24b62b2370ed4c78" # v1.7.1 uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@v1.9.1"
with: with:
# Example of specifying custom arguments # Example of specifying custom arguments
scan-args: |- scan-args: |-