From 657375471bff72afa5f625083bbab8003eb5f8c9 Mon Sep 17 00:00:00 2001 From: Jake Scaltreto Date: Tue, 23 Jan 2024 15:30:21 -0500 Subject: [PATCH] chore(ci): implement code scanning (#435) ## Summary Implement PR code scanning and SBOM on release. ## Detail ## Testing ## Documentation --- **Requested Reviewers:** @mention --- .github/workflows/ci.yml | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 976509a7e..1a5f25827 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -1,5 +1,7 @@ name: Continuous Integration on: + push: + branches: [master] pull_request: jobs: @@ -31,3 +33,13 @@ jobs: - name: Run tests run: yarn test + + scan: + needs: run_ci_tests + if: github.event_name == 'pull_request' + uses: circlefin/circle-public-github-workflows/.github/workflows/pr-scan.yaml@v1 + + release-sbom: + needs: run_ci_tests + if: github.event_name == 'push' + uses: circlefin/circle-public-github-workflows/.github/workflows/attach-release-assets.yaml@v1