michael/michaelschiemer
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: Correct branch detection in security-scan.yml

Browse Source 
- Handle pull_request events correctly (use head_ref)
- Support staging branch in security scans
- Add workflow_dispatch input for branch selection
- Fix REF_NAME extraction for all event types
This commit is contained in:
Michael Schiemer
2025-11-01 00:29:34 +01:00
parent e105afb23c
commit 2e8797ce1d
1 changed files with 7 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
.gitea/workflows/security-scan.yml
View File

@@ -2,13 +2,18 @@ name: Security Vulnerability Scan
on: on:
push: push:
branches: [ main, develop ] branches: [ main, develop, staging ]
pull_request: pull_request:
branches: [ main, develop ] branches: [ main, develop, staging ]
schedule: schedule:
# Daily security scan at 2 AM UTC # Daily security scan at 2 AM UTC
- cron: '0 2 * * *' - cron: '0 2 * * *'
workflow_dispatch: workflow_dispatch:
inputs:
branch:
description: 'Branch to scan'
required: false
default: 'main'
jobs: jobs:
security-audit: security-audit: