# To use this action you need to fill the following requirements:
#
# 1. Create an account on https://app.soos.io to obtain a Client ID and API Key (Free 30 days trials for both our SCA/DAST product).
#
# 2. Set up your API KEY/Client ID as Github Secrets named SOOS_CLIENT_ID & SOOS_API_KEY. (Also set SOOS_GITHUB_PAT with your Github Personal Access Token if you're going to use sarif upload)
#
name:"SOOS DAST Scan"
on:
push:
branches:[$default-branch, $protected-branches ]
pull_request:
branches:[$default-branch ]
jobs:
soos:
permissions:
security-events:write# for uploading code scanning alert info