Skip to content

add a trivy cache workflow #1949

add a trivy cache workflow

add a trivy cache workflow #1949

name: 'MetaMask Security Code Scanner'
on:
push:
branches:
- 'main'
pull_request:
branches:
- 'main'
jobs:
run-security-scan:
runs-on: ubuntu-latest
permissions:
actions: read
contents: read
security-events: write
steps:
- uses: actions/checkout@v4
- name: MetaMask Security Code Scanner
uses: ConsenSys/docs-gha/mm-security-scanner@main
with:
repo: ${{ github.repository }}
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SECURITY_SCAN_METRICS_TOKEN: ${{ secrets.SECURITY_SCAN_METRICS_TOKEN }}
APPSEC_BOT_SLACK_WEBHOOK: ${{ secrets.APPSEC_BOT_SLACK_WEBHOOK }}