From 15222992f87f494bddf1acb0b9aa80ff7d2bee01 Mon Sep 17 00:00:00 2001 From: Sebastian Meyer Date: Fri, 26 Jan 2024 11:47:16 +0100 Subject: [PATCH] Add Psalm GitHub workflow --- .github/workflows/psalm.yml | 35 +++++++++++++++++++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 .github/workflows/psalm.yml diff --git a/.github/workflows/psalm.yml b/.github/workflows/psalm.yml new file mode 100644 index 0000000..6b5f5be --- /dev/null +++ b/.github/workflows/psalm.yml @@ -0,0 +1,35 @@ +name: Psalm Static Analyzer + +on: + push: + branches: [ "main" ] + pull_request: + branches: [ "main" ] + +permissions: + contents: read + +jobs: + Psalm: + name: Psalm Scanner + runs-on: ubuntu-latest + permissions: + contents: read + security-events: write + actions: read + + steps: + - name: Checkout Source Code + uses: actions/checkout@v4 + + - name: Run Psalm + uses: docker://ghcr.io/psalm/psalm-github-actions + with: + security_analysis: true + report_file: psalm-results.sarif + + - name: Upload Analysis Results + uses: github/codeql-action/upload-sarif@v3 + with: + sarif_file: psalm-results.sarif + wait-for-processing: true