Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

Commit 57a1b10

Browse filesBrowse files
author
Majid
authored
Create defender-for-devops.yml
گردش کار کمل
1 parent b0e01d5 commit 57a1b10
Copy full SHA for 57a1b10

File tree

1 file changed

+47
-0
lines changed
Filter options

1 file changed

+47
-0
lines changed

‎.github/workflows/defender-for-devops.yml

Copy file name to clipboard
+47Lines changed: 47 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,47 @@
1+
# This workflow uses actions that are not certified by GitHub.
2+
# They are provided by a third-party and are governed by
3+
# separate terms of service, privacy policy, and support
4+
# documentation.
5+
#
6+
# Microsoft Security DevOps (MSDO) is a command line application which integrates static analysis tools into the development cycle.
7+
# MSDO installs, configures and runs the latest versions of static analysis tools
8+
# (including, but not limited to, SDL/security and compliance tools).
9+
#
10+
# The Microsoft Security DevOps action is currently in beta and runs on the windows-latest queue,
11+
# as well as Windows self hosted agents. ubuntu-latest support coming soon.
12+
#
13+
# For more information about the action , check out https://github.com/microsoft/security-devops-action
14+
#
15+
# Please note this workflow do not integrate your GitHub Org with Microsoft Defender For DevOps. You have to create an integration
16+
# and provide permission before this can report data back to azure.
17+
# Read the official documentation here : https://learn.microsoft.com/en-us/azure/defender-for-cloud/quickstart-onboard-github
18+
19+
name: "Microsoft Defender For Devops"
20+
21+
on:
22+
push:
23+
branches: [ "main" ]
24+
pull_request:
25+
branches: [ "main" ]
26+
schedule:
27+
- cron: '20 19 * * 0'
28+
29+
jobs:
30+
MSDO:
31+
# currently only windows latest is supported
32+
runs-on: windows-latest
33+
34+
steps:
35+
- uses: actions/checkout@v4
36+
- uses: actions/setup-dotnet@v4
37+
with:
38+
dotnet-version: |
39+
5.0.x
40+
6.0.x
41+
- name: Run Microsoft Security DevOps
42+
uses: microsoft/security-devops-action@v1.6.0
43+
id: msdo
44+
- name: Upload results to Security tab
45+
uses: github/codeql-action/upload-sarif@v3
46+
with:
47+
sarif_file: ${{ steps.msdo.outputs.sarifFile }}

0 commit comments

Comments
0 (0)
Morty Proxy This is a proxified and sanitized view of the page, visit original site.