|
| 1 | + |
| 2 | +# This workflow will build a Java project with Maven, and cache/restore any |
| 3 | +#dependencies to improve the workflow execution time |
| 4 | +# For more information see: https://docs.github.com/en/actions/automating- |
| 5 | +#builds-and-tests/building-and-testing-java-with-maven |
| 6 | +# This workflow uses actions that are not certified by GitHub. |
| 7 | +# They are provided by a third-party and are governed by |
| 8 | +# separate terms of service, privacy policy, and support |
| 9 | +# documentation. |
| 10 | +name: Java CI with Maven |
| 11 | +on: |
| 12 | +push: |
| 13 | +branches: [ "master" ] |
| 14 | +pull_request: |
| 15 | +branches: [ "master" ] |
| 16 | +jobs: |
| 17 | +build: |
| 18 | +runs-on: ubuntu-latest |
| 19 | +steps: |
| 20 | +- uses: actions/checkout@v4 |
| 21 | +- name: Set up JDK 17 |
| 22 | +uses: actions/setup-java@v4with: |
| 23 | +java-version: '17' |
| 24 | +distribution: 'temurin' |
| 25 | +cache: maven |
| 26 | +- name: Build with Maven |
| 27 | +run: mvn -B package --file pom.xml |
| 28 | +semgrep: |
| 29 | +# User definable name of this GitHub Actions job. |
| 30 | +name: semgrep/ci |
| 31 | +# If you are self-hosting, change the following `runs-on` value: |
| 32 | +runs-on: ubuntu-latest |
| 33 | +container: |
| 34 | +# A Docker image with Semgrep installed. Do not change this. |
| 35 | +image: semgrep/semgrep |
| 36 | +steps: |
| 37 | +# Fetch project source with GitHub Actions Checkout. Use either v3 or v4. |
| 38 | +- uses: actions/checkout@v4 |
| 39 | +# Run the "semgrep ci" command on the command line of the docker image. |
| 40 | +- run: semgrep ci --sarif > semgrep.sarif |
| 41 | +env: |
| 42 | +# Connect to Semgrep AppSec Platform through your |
| 43 | +SEMGREP_APP_TOKEN. |
| 44 | +# Generate a token from Semgrep AppSec Platform > Settings |
| 45 | +# and add it to your GitHub secrets. |
| 46 | +SEMGREP_APP_TOKEN: "8af99e33223a7a6f1538a5527b1f144f6fff0adf4f2f32ccdf53ca1271ea7577" |
0 commit comments