fixup! ci: New github workflow for Snyk

1 year ago · c56ed52954
parent 14034060d7
commit c56ed52954
2 changed files with 12 additions and 3 deletions
--- a/.github/workflows/snyk.yml
+++ b/.github/workflows/snyk.yml
@ -23,20 +23,25 @@ jobs:
    runs-on: ubuntu-latest
    steps:
      - name: Get Source Code
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
        with:
          fetch-depth: 0 # avoid shallow clone for GitVersion

      - name: dotnet restore
        run: dotnet restore src

+      # No central package management support?
+      # https://github.com/snyk/snyk-nuget-plugin/issues/103
      - name: Snyk Test
        uses: snyk/actions/dotnet@master
        continue-on-error: true
        env:
          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
        with:
-          args: --sarif-file-output=snyk.sarif --file=src/Recyclarr.sln
+          args: >
+            --file=src/Recyclarr.sln
+            --sarif-file-output=snyk.sarif
+            --project-name=recyclarr

      - name: Snyk Monitor
        uses: snyk/actions/dotnet@master
@ -45,9 +50,12 @@ jobs:
          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
        with:
          command: monitor
-          args: --file=src/Recyclarr.sln
+          args: >
+            --file=src/Recyclarr.sln
+            --project-name=recyclarr

      - name: Publish to Github CS
        uses: github/codeql-action/upload-sarif@v2
        with:
          sarif_file: snyk.sarif
+          category: snyk
--- a/README.md
+++ b/README.md
@ -3,6 +3,7 @@
 [![MIT license](https://img.shields.io/badge/License-MIT-blue.svg)](https://github.com/recyclarr/recyclarr/blob/master/LICENSE)
 ![build status](https://github.com/recyclarr/recyclarr/actions/workflows/build.yml/badge.svg?branch=master)
 [![Quality Gate Status](https://sonarcloud.io/api/project_badges/measure?project=recyclarr_recyclarr&metric=alert_status)](https://sonarcloud.io/summary/new_code?id=recyclarr_recyclarr)
+[![Known Vulnerabilities](https://snyk.io/test/github/recyclarr/recyclarr/badge.svg)](https://snyk.io/test/github/recyclarr/recyclarr)
 [![GitHub release](https://img.shields.io/github/release/recyclarr/recyclarr.svg)](https://github.com/recyclarr/recyclarr/releases/)
 [![Support Server](https://img.shields.io/discord/492590071455940612.svg?color=7289da&label=TRaSH-Guides&logo=discord&style=flat-square)](https://discord.com/invite/Vau8dZ3)