build: install openzeppelin #19
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: "Slither Analysis" | |
| on: | |
| workflow_dispatch: | |
| pull_request: | |
| push: | |
| branches: | |
| - "main" | |
| jobs: | |
| analyze: | |
| runs-on: "ubuntu-latest" | |
| permissions: | |
| actions: "read" | |
| contents: "read" | |
| security-events: "write" | |
| steps: | |
| - name: "Check out the repo" | |
| uses: "actions/checkout@v3" | |
| with: | |
| submodules: "recursive" | |
| - name: "Run Slither analysis" | |
| uses: "crytic/slither-action@v0.3.0" | |
| id: "slither" # Required to reference this step in the next step. | |
| with: | |
| fail-on: "none" # Required to avoid failing the CI run regardless of findings. | |
| node-version: 20 | |
| sarif: "results.sarif" | |
| solc-version: "0.8.23" | |
| - name: "Upload SARIF file to GitHub code scanning" | |
| uses: "github/codeql-action/upload-sarif@v2" | |
| with: | |
| sarif_file: ${{ steps.slither.outputs.sarif }} | |
| - name: "Add Slither summary" | |
| run: | | |
| echo "## Slither result" >> $GITHUB_STEP_SUMMARY | |
| echo "✅ Uploaded to GitHub code scanning" >> $GITHUB_STEP_SUMMARY |