Update build.yaml

it-at-m · Apr 24, 2024 · 7bcd405 · 7bcd405
1 parent 09e69f0
commit 7bcd405
Showing 1 changed file with 16 additions and 11 deletions.
diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
@@ -9,21 +9,26 @@ jobs:
     steps:
       - name: Checkout code
         uses: actions/checkout@v3
-
-      - name: Advance Security Policy as Code
-        uses: advanced-security/[email protected]
-        with:
-          policy: GeekMasher/security-queries
-          policy-path: policies/default.yml
-
-          token: ${{ secrets.ACCESS_TOKEN }}
-
-          argvs: '--disable-dependabot --disable-secret-scanning --disable-code-scanning'
+
       - name: Set up JDK 11
         uses: actions/setup-java@v3
         with:
           java-version: '11'
           distribution: 'adopt'
           cache: maven
       - name: Build with maven
-        run: mvn --batch-mode --update-snapshots verify
+        run: mvn --batch-mode --update-snapshots verify
+  compliance:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v3
+
+      - name: Advance Security Policy as Code
+        uses: advanced-security/[email protected]
+        with:
+          policy: it-at-m/policy-as-code
+          policy-path: default.yaml
+          token: ${{ secrets.ACCESS_TOKEN }}
+          argvs: "--disable-dependabot --disable-secret-scanning --disable-code-scanning --display"