feat: add Aikido security workflows for full scan and PR check

2026-05-04 07:08:44 +00:00 · 2026-05-04 07:08:44 +00:00 · 2a5f1e2fe7
commit 2a5f1e2fe7
parent 34c06ff025
2 changed files with 41 additions and 0 deletions
--- a/.forgejo/workflows/full-scan-aikido.yml
+++ b/.forgejo/workflows/full-scan-aikido.yml
@ -0,0 +1,18 @@
+name: Aikido Security Full Scan
+
+on:
+  schedule:
+    - cron: '0 0 * * *'
+
+jobs:
+  aikido-full-scan:
+    name: Aikido Security Full Scan
+    runs-on: stackit-ubuntu-22
+    steps:
+      - name: Checkout repository
+        uses: https://schmalz-git.git.onstackit.cloud/schmalz/shared-actions/checkout@checkout-v1
+
+      - name: Run Aikido full scan
+        uses: https://schmalz-git.git.onstackit.cloud/schmalz/shared-actions/aikido-full-scan@aikido-full-scan-v1
+        with:
+          apikey: ${{ secrets.AIKIDO_CLIENT_API_KEY }}
--- a/.forgejo/workflows/pr-check-aikido.yml
+++ b/.forgejo/workflows/pr-check-aikido.yml
@ -0,0 +1,23 @@
+name: Aikido Security PR Check
+
+on:
+  pull_request:
+    branches:
+      - '*'
+
+concurrency:
+  group: ${{ forgejo.workflow }}-${{ forgejo.ref }}
+  cancel-in-progress: true
+
+jobs:
+  aikido-security:
+    name: Aikido Security Scan
+    runs-on: stackit-ubuntu-22
+    steps:
+      - name: Checkout repository
+        uses: https://schmalz-git.git.onstackit.cloud/schmalz/shared-actions/checkout@checkout-v1
+
+      - name: Security scan
+        uses: https://schmalz-git.git.onstackit.cloud/schmalz/shared-actions/aikido-pr-scan@aikido-pr-scan-v1
+        with:
+          apikey: ${{ secrets.AIKIDO_CLIENT_API_KEY }}