Added frogbot-scan-pull-request.yml on jfrog-github-app/add-frogbot-c…

…onfigurations
eyalk007 · Sep 27, 2024 · 758a6fd · 758a6fd
1 parent e850a79
commit 758a6fd
Showing 1 changed file with 21 additions and 0 deletions.
diff --git a/.github/workflows/frogbot-scan-pull-request.yml b/.github/workflows/frogbot-scan-pull-request.yml
@@ -0,0 +1,21 @@
+
+jobs:
+  scan-pull-request:
+    runs-on: ubuntu-latest
+    # A pull request needs to be approved before Frogbot scans it. Any GitHub user who is associated with the
+    # "frogbot" GitHub environment can approve the pull request to be scanned.
+    environment: frogbot
+    steps:
+      - uses: jfrog/frogbot@v2
+    env:
+      # [Mandatory]
+      # JFrog platform URL
+      JF_URL: ${{ secrets.JF_URL }}
+
+      # [Mandatory if JF_USER and JF_PASSWORD are not provided]
+      # JFrog access token with 'read' permissions on Xray service
+      JF_ACCESS_TOKEN: ${{ secrets.JF_TOKEN }}
+
+      # [Mandatory]
+      # The GitHub token is automatically generated for the job
+      JF_GIT_TOKEN: ${{ secrets.GITHUB_TOKEN }}