From c85b8dee5a42794efc0b7a02de905e9685b937f4 Mon Sep 17 00:00:00 2001
From: Finn Ellis <finn@finn.fun>
Date: Sun, 3 Nov 2024 11:51:37 -0800
Subject: [PATCH] use semgrep.yml for postmerge checks only

---
 .github/workflows/semgrep.yml | 11 ++---------
 1 file changed, 2 insertions(+), 9 deletions(-)

diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
index b6548cd..942cea5 100644
--- a/.github/workflows/semgrep.yml
+++ b/.github/workflows/semgrep.yml
@@ -1,24 +1,17 @@
 on:
   workflow_dispatch: {}
-  pull_request: {}
   push:
     branches:
     - main
-    - master
-    paths:
-    - .github/workflows/semgrep.yml
-  schedule:
-  # random HH:MM to avoid a load spike on GitHub Actions at 00:00
-  - cron: 5 4 * * *
 name: Semgrep
 jobs:
   semgrep:
     name: semgrep/ci
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-latest
     env:
       SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
     container:
-      image: returntocorp/semgrep
+      image: semgrep/semgrep
     steps:
     - uses: actions/checkout@v3
     - run: semgrep ci