Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

[actions] Support Semgrep by Github Actions #379

Merged
merged 1 commit into from
Jun 19, 2023
Merged

[actions] Support Semgrep by Github Actions #379

merged 1 commit into from
Jun 19, 2023

Conversation

maipbui
Copy link
Contributor

@maipbui maipbui commented Jun 19, 2023

Why I did it
Semgrep is a static analysis tool to find security vulnerabilities.
When opening a PR or commtting to PR, Semgrep performs a diff-aware scanning, which scans changed files in PRs.
When merging PR, Semgrep performs a full scan on master branch and report all findings.

Ref: - Supported Language - Semgrep Rules

How I did it
Integrate Semgrep into this repository by committing a job configuration file

How Has This Been Tested?

Additional Information (Optional)

@maipbui
add semgrep
a553f0b 
Signed-off-by: Mai Bui <maibui@microsoft.com>
@qiluo-msft qiluo-msft merged commit 81048cd into sonic-net:master Jun 19, 2023
@maipbui maipbui deleted the semgrep branch June 20, 2023 00:45
dprital added a commit to dprital/sonic-buildimage that referenced this pull request Jun 20, 2023
@dprital
[submodule] Advance sonic-platform-daemons pointer
2403849 
Update sonic-platform-daemons submodule pointer to include the following:
* 81048cd add semgrep ([sonic-net#379](sonic-net/sonic-platform-daemons#379))

Signed-off-by: dprital <drorp@nvidia.com>
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers

@qiluo-msft qiluo-msft qiluo-msft approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@maipbui @qiluo-msft