Skip to content

Commit

Permalink
fix: add block_mode input for semgrep (#337)
Browse files Browse the repository at this point in the history
This PR adds input block_mode for semgrep to enable failing pipeline if
we have some findings in semgrep scan.

Test run:
https://github.com/splunk/splunk-add-on-for-google-workspace/actions/runs/10954006775
  • Loading branch information
dvarasani-crest authored Dec 6, 2024
1 parent 9303824 commit 7f573f5
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions .github/workflows/reusable-build-test-release.yml
Original file line number Diff line number Diff line change
Expand Up @@ -331,6 +331,8 @@ jobs:
uses: splunk/sast-scanning/.github/workflows/sast-scan.yml@main
secrets:
SEMGREP_KEY: ${{ secrets.SEMGREP_PUBLISH_TOKEN }}
with:
block_mode: "policy"

test-inventory:
runs-on: ubuntu-latest
Expand Down

0 comments on commit 7f573f5

Please sign in to comment.