Rooba
/
oss-fuzz
mirror of https://github.com/google/oss-fuzz.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Use sarif by default (#10621)

This commit is contained in:
jonathanmetzman 2023-06-29 16:11:47 -04:00 committed by GitHub
parent 2cbf2afc29
commit 6922c8c1ac
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 16 additions and 21 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

37
docs/getting-started/continuous_integration.md
View File

@ -88,22 +88,20 @@ jobs:
oss-fuzz-project-name: 'example'
language: c++
fuzz-seconds: 600
# Uncomment this to get results in the GitHub security dashboard.
# output-sarif: true
output-sarif: true
- name: Upload Crash
uses: actions/upload-artifact@v3
if: failure() && steps.build.outcome == 'success'
with:
name: artifacts
path: ./out/artifacts
# Uncomment this to get results in the GitHub security dashboard.
# - name: Upload Sarif
# if: always() && steps.build.outcome == 'success'
# uses: github/codeql-action/upload-sarif@v2
# with:
# # Path to SARIF file relative to the root of the repository
# sarif_file: cifuzz-sarif/results.sarif
# checkout_path: cifuzz-sarif
- name: Upload Sarif
if: always() && steps.build.outcome == 'success'
uses: github/codeql-action/upload-sarif@v2
with:
# Path to SARIF file relative to the root of the repository
sarif_file: cifuzz-sarif/results.sarif
checkout_path: cifuzz-sarif
```
@ -145,7 +143,6 @@ permissions: {}
jobs:
Fuzzing:
runs-on: ubuntu-latest
# Uncomment this to get results in the GitHub security dashboard.
permissions:
security-events: write
strategy:
@ -167,22 +164,20 @@ jobs:
language: c++
fuzz-seconds: 600
sanitizer: ${{ matrix.sanitizer }}
# Uncomment this to get results in the GitHub security dashboard.
# output-sarif: true
output-sarif: true
- name: Upload Crash
uses: actions/upload-artifact@v3
if: steps.build.outcome == 'success'
with:
name: ${{ matrix.sanitizer }}-artifacts
path: ./out/artifacts
# Uncomment this to get results in the GitHub security dashboard.
# - name: Upload Sarif
# if: always() && steps.build.outcome == 'success'
# uses: github/codeql-action/upload-sarif@v2
# with:
# # Path to SARIF file relative to the root of the repository
# sarif_file: cifuzz-sarif/results.sarif
# checkout_path: cifuzz-sarif
- name: Upload Sarif
if: always() && steps.build.outcome == 'success'
uses: github/codeql-action/upload-sarif@v2
with:
# Path to SARIF file relative to the root of the repository
sarif_file: cifuzz-sarif/results.sarif
checkout_path: cifuzz-sarif
{% endraw %}
```