gh-workflow-auditor checking for actions.txt instead of actions.yml

TinderSec / gh-workflow-auditor

Script to audit GitHub Action Workflow files for potential vulnerabilities.

Other

148 stars 18 forks source link

gh-workflow-auditor checking for actions.txt instead of actions.yml #13

Open bviswanathan-exelixis opened 11 months ago

bviswanathan-exelixis commented 11 months ago

Why is gh-workflow-auditor checking for actions.txt instead of .yml?.

% python3 main.py --type repo <github-acct/repo> INFO: > Checking for supply chain attacks. INFO: No actions.txt file to scan. Supply chain scan complete.