From 81ae359dfcd3c45d792d434082577a07f526f09f Mon Sep 17 00:00:00 2001 From: El RIDO Date: Thu, 17 Aug 2023 00:00:30 +0200 Subject: [PATCH] Delete shiftleft-analysis.yml Development on this stopped in 2021 and apart from the (false positive) secret scan, dev suggests CodeQL replaces it, feature wise: https://github.com/ShiftLeftSecurity/sast-scan/issues/352 --- .github/workflows/shiftleft-analysis.yml | 35 ------------------------ 1 file changed, 35 deletions(-) delete mode 100644 .github/workflows/shiftleft-analysis.yml diff --git a/.github/workflows/shiftleft-analysis.yml b/.github/workflows/shiftleft-analysis.yml deleted file mode 100644 index 56d24520..00000000 --- a/.github/workflows/shiftleft-analysis.yml +++ /dev/null @@ -1,35 +0,0 @@ -# This workflow integrates Scan with GitHub's code scanning feature -# Scan is a free open-source security tool for modern DevOps teams from ShiftLeft -# Visit https://slscan.io/en/latest/integrations/code-scan for help -name: SL Scan - -on: - push: - branches: [ master ] - pull_request: - # The branches below must be a subset of the branches above - branches: [ master ] - schedule: - - cron: '16 22 * * 4' - -jobs: - Scan-Build: - # Scan runs on ubuntu, mac and windows - runs-on: ubuntu-latest - steps: - - uses: actions/checkout@v3 - # potentially add composer install steo here - - name: Perform Scan - uses: ShiftLeftSecurity/scan-action@master - env: - WORKSPACE: "" - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - SCAN_AUTO_BUILD: true - with: - output: reports - # Scan auto-detects the languages. - - - name: Upload report - uses: github/codeql-action/upload-sarif@v2 - with: - sarif_file: reports