Skip to content

Adding workflow to test github action #93

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
upadhyayap wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Adding workflow to test github action #93

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
47 changes: 47 additions & 0 deletions .github/workflows/scan.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,47 @@
name: Endor Labs Scan

# This workflow tests the Endor Labs scan action using the local action code
# It runs on pull requests to validate changes to the action itself

on:
workflow_dispatch: # Allow manual triggering

jobs:
scan:
name: Scan with Endor Labs
runs-on: ubuntu-latest
permissions:
id-token: write # Required for keyless authentication with Endor Labs
contents: read # Required by actions/checkout

steps:
- name: Checkout Repository
uses: actions/checkout@v4

- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: 24.x

- name: Setup Yarn
run: corepack enable

- name: Install dependencies
run: yarn install --frozen-lockfile --ignore-scripts

- name: Build action
run: |
yarn run build
yarn run package

- name: Scan with Endor Labs (Local Action)
uses: ./
with:
namespace: "endor-ci"
api: "https://api.staging.endorlabs.com"
enable_github_action_token: true
log_verbose: true
log_level: "debug"
scan_dependencies: true
scan_summary_output_type: "table"

Loading