chore(ci): Remove Shift Left code scan from code analysis workflow

Note: The maintainer of Shift Left put the project in maintenance mode. See ShiftLeftSecurity/sast-scan#352
wuespace · Dec 27, 2022 · 5125fc3 · 5125fc3
1 parent 7418c7a
commit 5125fc3
Showing 1 changed file with 0 additions and 40 deletions.
diff --git a/.github/workflows/code-analysis.yml b/.github/workflows/code-analysis.yml
@@ -55,43 +55,3 @@ jobs:
  run: pnpm build
  - name: Perform CodeQL Analysis 🔬
  uses: github/codeql-action/analyze@v1
-
- shift-left-analysis:
- # This workflow integrates Scan with GitHub's code scanning feature
- # Scan is a free open-source security tool for modern DevOps teams from ShiftLeft
- # Visit https://slscan.io/en/latest/integrations/code-scan for help
- name: Shift Left
- runs-on: ubuntu-latest
- steps:
- - name: Checkout 📥
- uses: actions/[email protected]
- - name: Setup PNPM 💿
- uses: pnpm/[email protected]
- with:
- version: ${{ env.pnpm }}
- - name: Setup Node 💿
- uses: actions/[email protected]
- with:
- node-version: ${{ env.node }}
- cache: 'pnpm'
-
- - name: Install dependencies 📚
- run: pnpm install
- - name: Build packages 📦
- run: pnpm build
-
- - name: Perform Scan 👁️
- uses: ShiftLeftSecurity/scan-action@master
- env:
- WORKSPACE: ''
- GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- with:
- output: reports
- # Scan auto-detects the languages in your project. To override uncomment the below variable and set the type
- # type: credscan,java
- # type: python
-
- - name: Upload report 📤
- uses: github/codeql-action/upload-sarif@v1
- with:
- sarif_file: reports