parent
0b4c5514f5
commit
14034060d7
@ -0,0 +1,53 @@
|
|||||||
|
# yaml-language-server: $schema=https://json.schemastore.org/github-workflow.json
|
||||||
|
name: Snyk
|
||||||
|
|
||||||
|
on:
|
||||||
|
push:
|
||||||
|
paths:
|
||||||
|
- .github/workflows/snyk.yml
|
||||||
|
- "**.cs"
|
||||||
|
- "**.props"
|
||||||
|
- "**.sln"
|
||||||
|
- "**.csproj"
|
||||||
|
pull_request:
|
||||||
|
paths:
|
||||||
|
- .github/workflows/snyk.yml
|
||||||
|
- "**.cs"
|
||||||
|
- "**.props"
|
||||||
|
- "**.sln"
|
||||||
|
- "**.csproj"
|
||||||
|
|
||||||
|
jobs:
|
||||||
|
snyk:
|
||||||
|
name: Snyk
|
||||||
|
runs-on: ubuntu-latest
|
||||||
|
steps:
|
||||||
|
- name: Get Source Code
|
||||||
|
uses: actions/checkout@v2
|
||||||
|
with:
|
||||||
|
fetch-depth: 0 # avoid shallow clone for GitVersion
|
||||||
|
|
||||||
|
- name: dotnet restore
|
||||||
|
run: dotnet restore src
|
||||||
|
|
||||||
|
- name: Snyk Test
|
||||||
|
uses: snyk/actions/dotnet@master
|
||||||
|
continue-on-error: true
|
||||||
|
env:
|
||||||
|
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
|
||||||
|
with:
|
||||||
|
args: --sarif-file-output=snyk.sarif --file=src/Recyclarr.sln
|
||||||
|
|
||||||
|
- name: Snyk Monitor
|
||||||
|
uses: snyk/actions/dotnet@master
|
||||||
|
continue-on-error: true
|
||||||
|
env:
|
||||||
|
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
|
||||||
|
with:
|
||||||
|
command: monitor
|
||||||
|
args: --file=src/Recyclarr.sln
|
||||||
|
|
||||||
|
- name: Publish to Github CS
|
||||||
|
uses: github/codeql-action/upload-sarif@v2
|
||||||
|
with:
|
||||||
|
sarif_file: snyk.sarif
|
Loading…
Reference in new issue