mirror of
https://github.com/spring-projects/spring-petclinic.git
synced 2025-04-24 19:32:48 +00:00
53 lines
No EOL
1.8 KiB
YAML
53 lines
No EOL
1.8 KiB
YAML
name: "Frogbot Scan Repository"
|
|
on:
|
|
push:
|
|
branches:
|
|
- main
|
|
workflow_dispatch:
|
|
schedule:
|
|
# The repository will be scanned once a day at 00:00 GMT.
|
|
- cron: "0 0 * * *"
|
|
permissions:
|
|
contents: write
|
|
pull-requests: write
|
|
security-events: write
|
|
# [Mandatory If using OIDC authentication protocol instead of JF_ACCESS_TOKEN]
|
|
# id-token: write
|
|
jobs:
|
|
scan-repository:
|
|
runs-on: ubuntu-latest
|
|
strategy:
|
|
matrix:
|
|
# The repository scanning will be triggered periodically on the following branches.
|
|
branch: ["dev"]
|
|
steps:
|
|
- uses: jfrog/frogbot@v2
|
|
env:
|
|
# [Mandatory]
|
|
# JFrog platform URL
|
|
JF_URL: ${{ secrets.JF_URL }}
|
|
|
|
# [Mandatory if JF_USER and JF_PASSWORD are not provided]
|
|
# JFrog access token with 'read' permissions on Xray service
|
|
# JF_ACCESS_TOKEN: ${{ secrets.JF_ACCESS_TOKEN }}
|
|
|
|
# [Mandatory if JF_ACCESS_TOKEN is not provided]
|
|
# JFrog username with 'read' permissions for Xray. Must be provided with JF_PASSWORD
|
|
JF_USER: ${{ secrets.JF_USER }}
|
|
|
|
# [Mandatory if JF_ACCESS_TOKEN is not provided]
|
|
# JFrog password. Must be provided with JF_USER
|
|
JF_PASSWORD: ${{ secrets.JF_ACCESS_TOKEN }}
|
|
|
|
# [Mandatory]
|
|
# The GitHub token is automatically generated for the job
|
|
JF_GIT_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
|
|
|
# [Mandatory]
|
|
# The name of the branch on which Frogbot will perform the scan
|
|
JF_GIT_BASE_BRANCH: ${{ matrix.branch }}
|
|
|
|
# [Mandatory if using OIDC authentication protocol instead of JF_ACCESS_TOKEN]
|
|
# Insert to oidc-provider-name the 'Provider Name' defined in the OIDC integration configured in the JPD
|
|
# with:
|
|
# oidc-provider-name: "" |