Skip to content
This repository has been archived by the owner on Oct 18, 2023. It is now read-only.

Commit

Permalink
dev: chg: pos-1465: remove snyk and sonarqube
Browse files Browse the repository at this point in the history
  • Loading branch information
marcello33 committed Jun 23, 2023
1 parent 8eb6430 commit 405fd0c
Show file tree
Hide file tree
Showing 2 changed files with 0 additions and 73 deletions.
41 changes: 0 additions & 41 deletions .github/workflows/security-ci.yml
Original file line number Diff line number Diff line change
Expand Up @@ -2,47 +2,6 @@ name: Security CI
on: [push, pull_request]

jobs:
snyk:
name: Snyk and Publish
runs-on: ubuntu-latest
steps:
- name: Checkout Source
uses: actions/checkout@master
- name: Run Snyk to check for vulnerabilities
uses: snyk/actions/golang@master
continue-on-error: true
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
GOFLAGS: "-buildvcs=false"
with:
args: --org=${{ secrets.SNYK_ORG }} --severity-threshold=medium --sarif-file-output=snyk.sarif
- name: Upload result to GitHub Code Scanning
uses: github/codeql-action/upload-sarif@v2
continue-on-error: true
with:
sarif_file: snyk.sarif

snyk-code:
name: Snyk Code and Publish
runs-on: ubuntu-latest
continue-on-error: true
steps:
- name: Checkout Source
uses: actions/checkout@master
- name: Run Snyk SAST to check for code vulnerabilities
uses: snyk/actions/golang@master
continue-on-error: true
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with:
args: --org=${{ secrets.SNYK_ORG }} --sarif-file-output=snyk.sarif
command: code test
- name: Upload result to GitHub Code Scanning
continue-on-error: true
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: snyk.sarif

govuln:
name: Run govuln check and Publish
runs-on: ubuntu-latest
Expand Down
32 changes: 0 additions & 32 deletions .github/workflows/security-sonarqube-ci.yml

This file was deleted.

0 comments on commit 405fd0c

Please sign in to comment.