diff --git a/.github/workflows/osv-scanner.yml b/.github/workflows/osv-scanner.yml index ca64b03..29b2fef 100644 --- a/.github/workflows/osv-scanner.yml +++ b/.github/workflows/osv-scanner.yml @@ -26,10 +26,11 @@ permissions: security-events: write # Read commit contents contents: read + # Actions read-only + actions: read jobs: - scan-scheduled: - if: ${{ github.event_name == 'push' || github.event_name == 'schedule' }} + scan: uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@ba0b4d196d231340e0ae94ae00933c8be0984192" # v1.7.4 with: # Example of specifying custom arguments @@ -37,12 +38,3 @@ jobs: -r --skip-git ./ - scan-pr: - if: ${{ github.event_name == 'pull_request' || github.event_name == 'merge_group' }} - uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@ba0b4d196d231340e0ae94ae00933c8be0984192" # v1.7.4 - with: - # Example of specifying custom arguments - scan-args: |- - -r - --skip-git - ./