ci: Create ethicalcheck.yml file

bush1D3v · Jun 15, 2024 · c5f6dc1 · c5f6dc1
1 parent fdb1aee
commit c5f6dc1
Showing 1 changed file with 32 additions and 0 deletions.
diff --git a/.github/workflows/ethicalcheck.yml b/.github/workflows/ethicalcheck.yml
@@ -0,0 +1,32 @@
+name: EthicalCheck-Workflow
+
+on:
+  push:
+    branches: [ "master" ]
+  pull_request:
+    branches: [ "master" ]
+  schedule:
+    - cron: '35 20 * * 0'
+
+permissions:
+  contents: read
+
+jobs:
+  Trigger_EthicalCheck:
+    permissions:
+      security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
+    runs-on: ubuntu-22.04
+
+    steps:
+       - name: EthicalCheck Free & Automated API Security Testing Service
+         uses: apisec-inc/ethicalcheck-action@005fac321dd843682b1af6b72f30caaf9952c641
+         with:
+          # The OpenAPI Specification URL or Swagger Path or Public Postman collection URL.
+          oas-url: "http://localhost:8080/api-docs/openapi.json"
+          email: "victor.jose.lopes.navarro@gmail.com"
+          sarif-result-file: "ethicalcheck-results.sarif"
+
+       - name: Upload sarif file to repository
+         uses: github/codeql-action/upload-sarif@v2
+         with:
+          sarif_file: ./ethicalcheck-results.sarif