From fcc53edca6f4a63a2b5e44ff153f0ffd2dc9dcbf Mon Sep 17 00:00:00 2001 From: Gonzalo Diaz Date: Tue, 14 May 2024 16:01:13 -0400 Subject: [PATCH] [CONFIG] Github action: Snyk code analysis added. --- .github/workflows/node-snyk.yml | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 .github/workflows/node-snyk.yml diff --git a/.github/workflows/node-snyk.yml b/.github/workflows/node-snyk.yml new file mode 100644 index 00000000..5cf7e746 --- /dev/null +++ b/.github/workflows/node-snyk.yml @@ -0,0 +1,20 @@ +# This workflow will build a .NET project +# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-net + +name: .NET Snyk Code analysis + +on: + push: + branches: [ main, develop, feature/* ] + pull_request: + branches: [ main ] + +jobs: + security: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@master + - name: Run Snyk to check for vulnerabilities + uses: snyk/actions/node@master + env: + SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}