SP-1022 | Update Semgrep Configuration

2024-12-18 21:38:23 +05:30
parent b34d0ece7b 556fc66596
commit bb89c731f9
1 changed files with 6 additions and 2 deletions
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -6,6 +6,8 @@ on:
    branches:    
      - master
      - main
+      - develop
+      - portal

  # Schedule this job to run at a certain time, using cron syntax
  # Note that * is a special character in YAML so you have to quote this string
@@ -20,11 +22,13 @@ jobs:
      github-event-number: ${{github.event.number}}
      github-event-name: ${{github.event_name}}
      github-repository: ${{github.repository}}
+      github-pr_owner_name: ${{github.event.pull_request.user.login}}
    secrets:
      READ_SEMGREP_RULES_TOKEN: ${{secrets.READ_SEMGREP_RULES_TOKEN}}
+      EMAIL_FETCH_TOKEN: ${{secrets.EMAIL_FETCH_TOKEN}}
      
  run-if-failed:
-    runs-on: [ self-hosted ]
+    runs-on: [ self-hosted, Linux ]
    needs: [central-semgrep]
    if: always() && (needs.semgrep.result == 'failure')
    steps:
@@ -38,4 +42,4 @@ jobs:
             
      - name: Assign Reviewers
        if: ${{ ( github.event.number != '' ) }}
-        uses: navi-infosec/security-oncall-action@v1.1
+        uses: navi-infosec/security-oncall-action@v1.1