Add sensiolabs secutiy checker to ci

2024-06-18 06:18:50 +02:00 · 2020-08-07 11:56:20 +02:00 · 2020-08-07 11:56:20 +02:00 · f06684c660
parent 2c4db3078d
commit f06684c660
2 changed files with 26 additions and 1 deletions
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@ -163,3 +163,27 @@ jobs:

      - name: Code Quality (by PHPStan)
        run: ./vendor/bin/phpstan analyse
+
+  security-test:
+    runs-on: ubuntu-latest
+    needs: [check-dependencies]
+    steps:
+      - uses: actions/checkout@v2
+
+      - name: Get Composer Cache Directory
+        id: composer-cache
+        run: |
+            echo "::set-output name=dir::$(composer config cache-files-dir)"
+
+      - uses: actions/cache@v1
+        with:
+          path: ${{ steps.composer-cache.outputs.dir }}
+          key: ${{ runner.os }}-composer-${{ hashFiles('**/composer.lock') }}
+          restore-keys: |
+            ${{ runner.os }}-composer-
+
+      - name: Install dependencies
+        run: composer install --prefer-dist --no-progress --no-suggest
+
+      - name: PHP Security test
+        run: ./vendor/bin/security-checker security:check --no-ansi
--- a/composer.json
+++ b/composer.json
@ -47,7 +47,8 @@
        "maglnet/composer-require-checker": "^2.1",
        "phpspec/prophecy-phpunit": "^2.0",
        "typo3/testing-framework": "^6.3",
-        "saschaegerer/phpstan-typo3": "^0.13.1"
+        "saschaegerer/phpstan-typo3": "^0.13.1",
+        "sensiolabs/security-checker": "^6.0"
    },
    "minimum-stability": "dev",
    "prefer-stable": true,