paulononato/backstage
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
Files
c2e852b3a3caee885f68bd3529fc46173f013a63
backstage/.github/workflows/verify_fossa.yml
T
renovate[bot] 132047b4c0 chore(deps): update step-security/harden-runner action to v2.15.1 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-03-09 20:10:06 +00:00

33 lines
829 B
YAML
Raw Blame History

name: Verify FOSSA
on:
push:
branches: [master]
pull_request:
branches: [master]
permissions:
contents: read
jobs:
analyze:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
uses: step-security/harden-runner@58077d3c7e43986b6b15fba718e8ea69e387dfcc # v2.15.1
with:
egress-policy: audit
- name: Checkout
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
- name: Install Fossa
run: "curl -H 'Cache-Control: no-cache' https://raw.githubusercontent.com/fossas/fossa-cli/master/install.sh | bash"
- name: Fossa Configure & Analyze
env:
# FOSSA Push-Only API Token
GITHUB_REF: $GITHUB_REF
FOSSA_API_KEY: 9ee7e8893660832a7387dcc32377fb61
run: node scripts/run-fossa.js
Reference in New Issue View Git Blame Copy Permalink