Skip to content

Create SECURITY.md

Create SECURITY.md #67

Workflow file for this run

# This is a basic workflow to help you get started with Actions
name: CI
# Controls when the action will run. Triggers the workflow on push or pull request
# events but only for the master branch
on:
workflow_dispatch:
push:
branches: [ master ]
pull_request:
branches: [ master ]
# A workflow run is made up of one or more jobs that can run sequentially or in parallel
jobs:
# This workflow contains a single job called "build"
build:
# The type of runner that the job will run on
runs-on: ubuntu-latest
# Steps represent a sequence of tasks that will be executed as part of the job
steps:
# Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
- uses: actions/checkout@v3
- uses: actions/setup-java@v2
with:
distribution: 'adopt'
java-version: '8'
- uses: actions/upload-artifact@v3
with:
path: binaries_to_upload/*.jar
- name: Veracode Upload and Scan Action Step
uses: ./ # Uses an action in the root directory
id: upload_and_scan
with:
appname: '${{ github.repository }}'
version: '${{ github.run_id }}'
filepath: 'binaries_to_upload/*.jar'
vid: '${{ secrets.VERACODE_API_ID }}'
vkey: '${{ secrets.VERACODE_API_KEY }}'
createsandbox: true
sandboxname: 'Github - ${{ github.ref }}'
scantimeout: 15
criticality: 'VeryHigh'
createprofile: false