Update security scan

aws · Aug 11, 2023 · e2df1e8 · e2df1e8
1 parent 7f973da
commit e2df1e8
Show file tree

Hide file tree

Showing 2 changed files with 13 additions and 3 deletions.
diff --git a/.github/workflows/securityscan.yml b/.github/workflows/securityscan.yml
@@ -1,6 +1,12 @@
 name: Security Scan
 
-on: [pull_request]
+on:
+  push:
+    branches: [ main ]
+  pull_request:
+    branches: [ main ]
+  schedule:
+    - cron: '00 11 * * 2'
 
 jobs:
   securityscan:
@@ -21,4 +27,8 @@ jobs:
       - name: Run Gosec Security Scanner
         uses: securego/gosec@master
         with:
-          args: ./...
+          args: ./...
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v2
+        with:
+          languages: go
diff --git a/README.md b/README.md
@@ -1,7 +1,7 @@
 # AWS MSK IAM SASL Signer for Go
 
 [![Go Build status](https://github.com/aws/aws-msk-iam-sasl-signer-go/actions/workflows/go.yml/badge.svg?branch=main)](https://github.com/aws/aws-msk-iam-sasl-signer-go/actions/workflows/go.yml) [![Apache V2 License](https://img.shields.io/badge/license-Apache%20V2-blue.svg)](https://github.com/aws/aws-msk-iam-sasl-signer-go/blob/main/LICENSE.txt)
-
+[![Security Scan](https://github.com/aws/aws-msk-iam-sasl-signer-go/actions/workflows/securityscan.yml/badge.svg?branch=main)](https://github.com/aws/aws-msk-iam-sasl-signer-go/actions/workflows/securityscan.yml)
 `aws-msk-iam-sasl-signer-go` is the AWS MSK IAM SASL Signer for Go programming language.
 
 The AWS MSK IAM SASL Signer for Go requires a minimum version of `Go 1.17`.