.github/workflows/osv-scanner-pr.yml
---
name: OSV-Scanner PR Scan
on:
pull_request:
branches: [ main ]
merge_group:
branches: [ main ]
permissions:
# Require writing security events to upload SARIF file to security tab
security-events: write
# Only need to read contents
contents: read
jobs:
scan-pr:
uses: "google/osv-scanner/.github/workflows/osv-scanner-reusable-pr.yml@main"