This repository has been archived on 2023-08-16. You can view files and clone it, but cannot push or open issues or pull requests.
footnotes/.github/workflows/symfonycorp.yml

26 lines
788 B
YAML
Raw Normal View History

2021-04-04 20:21:48 +00:00
name: 'The PHP Security Checker'
description: 'Checks composer.json for known vulnerabilities in your package dependencies'
branding:
icon: 'umbrella'
color: 'gray-dark'
inputs:
lock:
description: 'The path to composer.lock is stored (root directory by default)'
required: false
default: './composer.lock'
disable-exit-code:
description: 'Whether to fail when issues are detected (false by default)'
required: false
default: 0
outputs:
vulns:
description: 'The detected vulnerabilities as JSON'
runs:
using: 'docker'
image: 'docker://symfonycorp/cli:latest'
args:
- check:security
- "--dir"
- ${{ inputs.lock }}
- "--disable-exit-code=${{ inputs.disable-exit-code }}"