1
Create a secret with your
SEMGREP_APP_TOKEN.2
Open the YAML pipeline for your project using the Visual Editor.
3
Click +Add Block.
4
Expand Jobs, and add the following commands to perform a full scan:
5
Enable the secret that you created in Step 1. To do this, expand Secret, and select
SEMGREP_APP_TOKEN.6
Click Run the workflow, provide a Commit summary, and click Looks good, Start to save your changes and run the pipeline job.
Sample Semaphore configuration snippet
- Default
- Semgrep CE
The following configuration creates a CI job that runs scans using the products and options you have enabled in Semgrep AppSec Platform.You can run specific product scans by passing an argument, such as
--supply-chain. View the list of arguments.