OpenSCA-cli/.github/workflows/run_opensca_scan.yml-代码预览-OpenSCA-cli:多语言第三方组件依赖及漏洞扫描工具 - AtomGit

SuperChen-CCfix: remove pull request trigger from OpenSCA scan workflow

15553aa9创建于 2025年8月25日历史提交

name: OpenSCA Scan

on:
  push:
    branches:
      - master
  workflow_dispatch:


jobs:
  opensca_scan:
    name: OpenSCA Scan
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v4
        with:
          sparse-checkout: |
            cmd/
            opensca/
            go.mod
            main.go
      - name: Run OpenSCA Scan
        uses: XmirrorSecurity/opensca-scan-action@v1
        with:
          token: ${{ secrets.OPENSCA_TOKEN }}
          proj: ${{ secrets.OPENSCA_PROJECT_ID }}
          need-artifact: true
          out: "outputs/results.json,outputs/result.html"