[release/v1.3] v1.3.0-rc.1 release note #6715

	name: OSV-Scanner

	on:
	pull_request:
	branches:
	- "main"
	merge_group:
	branches:
	- "main"
	push:
	branches:
	- "main"
	schedule:
	- cron: '44 15 * * 5'

	permissions:
	contents: read

	jobs:
	scan-scheduled:
	if: ${{ github.event_name == 'push' \|\| github.event_name == 'schedule' }}
	uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@764c91816374ff2d8fc2095dab36eecd42d61638" # v1.9.2
	with:
	scan-args: \|-
	--skip-git
	--recursive
	./
	permissions:
	actions: read
	contents: read
	# Require writing security events to upload SARIF file to security tab
	security-events: write

	scan-pr:
	if: ${{ github.event_name == 'pull_request' \|\| github.event_name == 'merge_group' }}
	uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@764c91816374ff2d8fc2095dab36eecd42d61638" # v1.9.2
	with:
	scan-args: \|-
	--skip-git
	--recursive
	./
	permissions:
	actions: read
	contents: read
	# Require writing security events to upload SARIF file to security tab
	security-events: write

Provide feedback