Skip to content

security: updating semver to 7.5.4 to resolve CVE-2022-25883 #70

security: updating semver to 7.5.4 to resolve CVE-2022-25883

security: updating semver to 7.5.4 to resolve CVE-2022-25883 #70

Workflow file for this run

name: Semgrep
on:
pull_request_target: {}
push:
branches: ["master", "main"]
jobs:
semgrep:
name: Scan
runs-on: ubuntu-latest
container:
image: returntocorp/semgrep
if: (github.actor != 'dependabot[bot]' && github.actor != 'snyk-bot')
steps:
- uses: actions/checkout@v3
- run: semgrep ci
env:
SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}