diff --git a/.github/workflows/fossology-check.yml b/.github/workflows/fossology-check.yml index e0073ca0..8ec8569c 100644 --- a/.github/workflows/fossology-check.yml +++ b/.github/workflows/fossology-check.yml @@ -1,5 +1,5 @@ name: Fossology check -on: [pull_request] +on: [pull_request, push] # permissions: # contents: read @@ -21,10 +21,10 @@ jobs: -e GITHUB_ACTIONS=true \ fossology/fossology:scanner "/bin/fossologyscanner" --report TEXT repo nomos ojo # Upload artifact - - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 + - uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 with: name: scan-fossology-report - path: ./results + path: ./results/check-license # Artifact download - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a @@ -47,10 +47,10 @@ jobs: -e GITHUB_ACTIONS=true \ fossology/fossology:scanner "/bin/fossologyscanner" --report TEXT repo copyright keyword # Upload artifact - - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 + - uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 with: name: scan-fossology-report - path: ./results + path: ./results/check-copyright # Artifact download - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index a1b3f89f..55ef6132 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -40,7 +40,7 @@ jobs: # Upload the results as artifacts (optional). - name: "Upload artifact" - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 + uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 with: name: SARIF file path: results.sarif