Analyze your source code using Precaution via precli.
Here is a minimal complete example to create a Code Scanning action using Precaution.
name: Precaution
on:
workflow_dispatch:
jobs:
analyze:
runs-on: ubuntu-latest
permissions:
# required for all workflows
security-events: write
# only required for workflows in private repositories
actions: read
contents: read
steps:
- name: Perform Precaution Analysis
uses: securesauce/precli-action@v1Optional The source file(s) or directory(s) to be analyzed
Default "."
Optional A comma-separated list of rule IDs or names to disable
Default "DEFAULT"