Ability to make sast-scan required status check

ShiftLeftSecurity / sast-scan

Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.

https://discord.gg/DCNxzaeUpd

Apache License 2.0

785 stars 112 forks source link

Ability to make sast-scan required status check #320

Open srikanth-expent opened 3 years ago

srikanth-expent commented 3 years ago

Currently when I go to set up branch protection rules. I am unable to set the sast-scan as a required status check, although within the pull request it does show up as required status check. Would it be possible to set this as a required check from the branch protection rules? So as shown in the image below - it would also be a required status check? Screen Shot 2021-05-28 at 7 43 26 AM

prabhu commented 3 years ago

@srikanth-expent GitHub automatically creates a check for every Job in a workflow. Could you try invoking scan as a separate job? We may face another issue in that scan is invoked with --no-error by default.