Agent Communication MCP Server

name: Security Scan on: push: branches: [ main ] pull_request: branches: [ main ] schedule: # Run every Monday at 9 AM UTC - cron: '0 9 * * 1' jobs: dependency-scan: name: Dependency Security Scan runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - name: Setup Node.js uses: actions/setup-node@v4 with: node-version: '20' cache: 'npm' - name: Install dependencies run: npm ci - name: Run npm audit run: npm audit --production continue-on-error: true - name: Run Snyk security scan uses: snyk/actions/node@master continue-on-error: true env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} - name: Upload security reports uses: actions/upload-artifact@v4 with: name: security-reports path: | npm-audit.json snyk-report.json code-scan: name: Code Security Scan runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - name: Initialize CodeQL uses: github/codeql-action/init@v3 with: languages: javascript-typescript - name: Run CodeQL Analysis uses: github/codeql-action/analyze@v3 - name: Run Semgrep uses: returntocorp/semgrep-action@v1 with: config: >- p/javascript p/typescript p/nodejs p/security-audit