Skip to content

New ruleset: chromium-insecure-gurl.yaml #214

New ruleset: chromium-insecure-gurl.yaml

New ruleset: chromium-insecure-gurl.yaml #214

Workflow file for this run

name: full-loop
on:
workflow_dispatch:
push:
branches: [main]
pull_request:
types: [opened, synchronize, reopened, ready_for_review]
branches: [main]
jobs:
full-loop:
name: full-loop
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
with:
fetch-depth: 0
- uses: ./
name: Run action on full security-action repo
id: action
with:
debug: true
github_token: ${{ secrets.GITHUB_TOKEN }}
baseline_scan_only: false
- run: |
echo ${{ steps.action.outputs.reviewdog-findings }}
if [[ "${{ steps.action.outputs.reviewdog-findings }}" -lt "70" ]]; then
echo "Too few reviewdog findings"
exit 1
fi
if [[ "${{ steps.action.outputs.safesvg-count }}" -lt "1" ]]; then
echo "Too few safesvg findings"
exit 1
fi
if [[ "${{ steps.action.outputs.tfsec-count }}" -lt "2" ]]; then
echo "Too few tfsec findings"
exit 1
fi
if [[ "${{ steps.action.outputs.semgrep-count }}" -lt "50" ]]; then
echo "Too few semgrep findings"
exit 1
fi
if [[ "${{ steps.action.outputs.sveltegrep-count }}" -lt "4" ]]; then
echo "Too few sveltegrep findings"
exit 1
fi
if [[ "${{ steps.action.outputs.npm-audit-count }}" -lt "1" ]]; then
echo "Too few npm-audit findings"
exit 1
fi
if [[ "${{ steps.action.outputs.pip-audit-count }}" -lt "1" ]]; then
echo "Too few pip-audit findings"
exit 1
fi
shell: bash
name: Check number of findings