This is an automated email from the ASF dual-hosted git repository.
remm pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tomcat.git
The following commit(s) were added to refs/heads/main by this push:
new 010100f53a Drop Semgrep workflow after report review
010100f53a is described below
commit 010100f53add69779f2bc4ca0c39ed3121f3a1b2
Author: remm <[email protected]>
AuthorDate: Wed Jun 26 17:47:29 2024 +0200
Drop Semgrep workflow after report review
---
.github/workflows/semgrep.yml | 50 -------------------------------------------
1 file changed, 50 deletions(-)
diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
deleted file mode 100644
index 04691fc341..0000000000
--- a/.github/workflows/semgrep.yml
+++ /dev/null
@@ -1,50 +0,0 @@
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-# http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-# Experimenting with the Semgrep service
-
-# Name of this GitHub Actions workflow.
-name: Semgrep
-
-on:
- # Scan changed files in PRs (diff-aware scanning):
- pull_request: {}
- # Scan on-demand through GitHub Actions interface:
- workflow_dispatch: {}
- # Scan mainline branches and report all findings:
- push:
- branches:
- - main
- - 10.1.x
- - 9.0.x
- # Schedule the CI job (this method uses cron syntax):
- schedule:
- - cron: '12 11 * * *' # Sets Semgrep to scan every day at 11:12 UTC.
-
-jobs:
- semgrep:
- # User definable name of this GitHub Actions job.
- name: semgrep/ci
- runs-on: ubuntu-latest
- env:
- # Connect to Semgrep Cloud Platform through SEMGREP_APP_TOKEN.
- SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
- container:
- # A Docker image with Semgrep installed. Do not change this.
- image: returntocorp/semgrep
-
- # Skip any PR created by dependabot to avoid permission issues:
- if: (github.actor != 'dependabot[bot]')
-
- steps:
- - uses: actions/checkout@v4
- - run: semgrep ci
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
