actions/fluxcd-flux2
3
0
Fork 0
mirror of https://github.com/fluxcd/flux2.git synced 2026-02-14 03:37:31 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
fluxcd-flux2/.github/workflows/snyk.yml
Hidde Beydals 0fa9aebf7a Split analysis workflows into CodeQL, FOSSA, Snyk 
This reverts #934, but takes into account the mistakes that were fixed
there.

Signed-off-by: Hidde Beydals <hello@hidde.co>
2021-02-18 14:36:02 +01:00

24 lines
574 B
YAML
Raw Blame History

name: Snyk
on:
push:
branches: [main]
pull_request:
branches: [main]
jobs:
security:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@master
- name: Run Snyk to check for vulnerabilities
uses: snyk/actions/golang@master
continue-on-error: true
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with:
args: --sarif-file-output=snyk.sarif
- name: Upload result to GitHub Code Scanning
uses: github/codeql-action/upload-sarif@v1
with:
sarif_file: snyk.sarif
Reference in a new issue View git blame Copy permalink