Run Psalm as a github action.
name: Psalm Static analysis
on: [push, pull_request]
jobs:
psalm:
name: Psalm
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v2
- name: Psalm
uses: docker://vimeo/psalm-github-actions
You can also specify a version (after 3.14.2).
- name: Psalm
- uses: docker://vimeo/psalm-github-actions
+ uses: docker://vimeo/psalm-github-actions:3.14.2
Psalm supports Security Analysis. You can use this config to show security analysis reports:
- name: Psalm
uses: docker://vimeo/psalm-github-actions
+ with:
+ security_analysis: true
GitHub also allows you to send security issues to a separate part of the site that can be restricted to members of your team.
Use the following config:
- name: Psalm
uses: docker://vimeo/psalm-github-actions
+ with:
+ security_analysis: true
+ report_file: results.sarif
+ - name: Upload Security Analysis results to GitHub
+ uses: github/codeql-action/upload-sarif@v1
+ with:
+ sarif_file: results.sarif
Specify composer_require_dev: true
to install dev dependencies and composer_ignore_platform_reqs: true
in order to ignore platform requirements.
These are both set to false by default.
- name: Psalm
uses: docker://vimeo/psalm-github-actions
+ with:
+ composer_require_dev: true
+ composer_ignore_platform_reqs: true