mirror of
https://github.com/puppetlabs/beaker-vmpooler.git
synced 2026-01-26 02:58:42 -05:00
(DIO-3134) Scan repo with Snyk
This commit is contained in:
suckatrash
parent
e012919f08
commit
596e0d83f9
1 changed files with 23 additions and 0 deletions
23
.github/workflows/snyk_scan.yaml
vendored
Normal file
23
.github/workflows/snyk_scan.yaml
vendored
Normal file
|
|
@ -0,0 +1,23 @@
|
||||||
|
name: Snyk Scan
|
||||||
|
on:
|
||||||
|
workflow_dispatch:
|
||||||
|
push:
|
||||||
|
branches:
|
||||||
|
- master
|
||||||
|
jobs:
|
||||||
|
security:
|
||||||
|
runs-on: ubuntu-latest
|
||||||
|
steps:
|
||||||
|
- uses: actions/checkout@master
|
||||||
|
- name: setup ruby
|
||||||
|
uses: ruby/setup-ruby@v1
|
||||||
|
with:
|
||||||
|
ruby-version: 2.7
|
||||||
|
- name: create lock
|
||||||
|
run: bundle lock
|
||||||
|
- name: Run Snyk to check for vulnerabilities
|
||||||
|
uses: snyk/actions/ruby@master
|
||||||
|
env:
|
||||||
|
SNYK_TOKEN: ${{ secrets.SNYK_DIO_KEY }}
|
||||||
|
with:
|
||||||
|
command: monitor
|
||||||
Loading…
Add table
Add a link
Reference in a new issue