Merge pull request #43 from ToshY/feature/dev-tools-update

ToshY · web-flow · commit 563be75e734b · 2022-12-18T15:12:28.000+01:00
updated security workflow
diff --git a/.github/workflows/phpcs.yml b/.github/workflows/phpcs.yml
@@ -14,6 +14,7 @@ jobs:
     strategy:
       matrix:
         php-versions: ['8.0', '8.1']
+
     steps:
       - name: Checkout
         uses: actions/checkout@v3
diff --git a/.github/workflows/phpmd.yml b/.github/workflows/phpmd.yml
@@ -14,7 +14,7 @@ jobs:
     strategy:
       matrix:
         php-versions: ['8.0', '8.1']
-        composer-dependencies: ['lowest', 'highest']
+
     steps:
       - name: Checkout
         uses: actions/checkout@v3
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
@@ -1,18 +1,37 @@
 name: Security Check
 
 on:
+  push:
+    branches:
+      - master
+  pull_request:
+    branches:
+      - master
   schedule:
-    - cron: '0 3 * * *'
+    - cron: '0 3 * * 0'
 
 jobs:
   build:
     name: Security check
     runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        php-versions: [ '8.0', '8.1' ]
 
     steps:
       - name: Checkout
         uses: actions/checkout@v3
 
+      - name: Setup PHP
+        uses: shivammathur/setup-php@v2
+        with:
+          php-version: ${{ matrix.php-versions }}
+
+      - name: Install Composer dependencies
+        uses: ramsey/composer-install@v2
+        with:
+          composer-options: '--prefer-stable'
+
       - name: Check for vulnerabilities
         uses: symfonycorp/security-checker-action@v5
         with:
