-
-
Notifications
You must be signed in to change notification settings - Fork 148
33 lines (30 loc) · 873 Bytes
/
amplify.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
---
name: Amplify Security
on:
pull_request_target: {}
workflow_dispatch: {}
push:
branches: ["main", "develop"]
permissions:
contents: read
id-token: write
jobs:
authorize:
environment:
${{ github.event_name == 'pull_request_target' &&
github.event.pull_request.head.repo.fork && 'external' || 'internal' }}
runs-on: ubuntu-latest
steps:
- run: true
amplify-security-scan:
name: Amplify Security Scan
needs: authorize
runs-on: ubuntu-latest
if: github.actor != 'dependabot[bot]'
steps:
- name: Checkout
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with:
ref: ${{ github.event.pull_request.head.sha || github.ref }}
- name: Amplify Runner
uses: amplify-security/runner-action@926f003f3c9695a93cbc4e2f1e64eb784dcacbfc # v0.2.0