shiftleftscan-workflow.yml

name: SEC - ShiftLeftSecurity Scan
# NOTE: Scan is now in maintenance mode. If you've just come across this project, then probably best to look at any alternatives.

on:
  # Allows you to run this workflow manually from the Actions tab
  workflow_dispatch:

jobs:
  shift_left_scan:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v2

      - name: Perform Scan
        uses: ShiftLeftSecurity/scan-action@master
        with:
          type: "credscan,python,nodejs,csharp,terraform,yaml,bash,depscan"
          output: ShiftLeftReport
        env:
          WORKSPACE: https://github.com/${{ github.repository }}/blob/${{ github.sha }}
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
          SCAN_AUTO_BUILD: true
          SCAN_DEBUG_MODE: debug

      - uses: actions/upload-artifact@v1
        name: Upload Artifacts
        with:
          name: shiftleft-scan-reports
          path: reports

      - name: Upload report
        uses: github/codeql-action/upload-sarif@v2
        with:
          sarif_file: ShiftLeftReport