diff --git a/.github/workflows/rl-scanner.yml b/.github/workflows/rl-scanner.yml index e7f97635..2d3edeaf 100644 --- a/.github/workflows/rl-scanner.yml +++ b/.github/workflows/rl-scanner.yml @@ -1,35 +1,28 @@ name: RL-Security-Scanner run-name: rl-security-scanner - on: - push: - branches: - - 'reversing_labs' pull_request: types: - closed workflow_dispatch: - permissions: - id-token: write - contents: write - + id-token: write + contents: write jobs: rl-scanner: name: Run Reversing Labs Scanner - # if: github.event_name == 'workflow_dispatch' || (github.event_name == 'pull_request' && github.event.pull_request.merged && github.event.pull_request.base.ref == 'master' && startsWith(github.event.pull_request.head.ref, 'release/')) + if: github.event_name == 'workflow_dispatch' || (github.event_name == 'pull_request' && github.event.pull_request.merged && github.event.pull_request.base.ref == 'master' && startsWith(github.event.pull_request.head.ref, 'release/')) runs-on: ubuntu-latest outputs: scan-status: ${{ steps.rl-scan-conclusion.outcome }} - strategy: - matrix: - xcode: - - '15.0.1' + matrix: + xcode: + - "15.0.1" steps: - name: Checkout code @@ -40,8 +33,7 @@ jobs: - name: Build package shell: bash run: | - zip -r auth0-swift.zip ./* - + zip -r auth0-swift.zip ./* - name: Get Artifact Version id: get_version @@ -49,7 +41,6 @@ jobs: version=$(awk -F'"' '/let version/ {print $2}' Auth0/Version.swift) echo "version=$version" >> $GITHUB_OUTPUT - - name: Run Reversing Labs Scanner id: rl-scan-conclusion uses: ./.github/actions/rl-scanner @@ -65,4 +56,4 @@ jobs: PRODSEC_TOOLS_ARN: ${{ secrets.PRODSEC_TOOLS_ARN }} - name: Output scan result - run: echo "scan-status=${{ steps.rl-scan-conclusion.outcome }}" >> $GITHUB_ENV \ No newline at end of file + run: echo "scan-status=${{ steps.rl-scan-conclusion.outcome }}" >> $GITHUB_ENV