Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fixes issues around snyk pathing and API keys #280

Merged
merged 10 commits into from
Aug 2, 2023
34 changes: 17 additions & 17 deletions .github/workflows/snyk.yml
Original file line number Diff line number Diff line change
@@ -1,23 +1,23 @@
name: Snyk Static Application Security Testing

on:
push:
branches:
- main

on: push
jobs:
security:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@master
- name: Run Snyk to check for vulnerabilities
uses: snyk/actions/python@master
continue-on-error: true # To make sure that SARIF upload gets called
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with:
args: --sarif-file-output=snyk.sarif
- name: Upload result to GitHub Code Scanning
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: snyk.sarif
- uses: actions/checkout@master
- uses: snyk/actions/setup@master
- uses: actions/setup-go@v1
with:
go-version: "1.13"
- run:
pip install -r bin/requirements.txt
- name: Snyk test
run: snyk test --all-projects --detection-depth=10 --skip-unresolved --sarif-file-output=snyk.sarif
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
- name: Upload result to GitHub Code Scanning
if: always()
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: snyk.sarif