|
|
|
@ -23,20 +23,25 @@ jobs:
|
|
|
|
|
runs-on: ubuntu-latest
|
|
|
|
|
steps:
|
|
|
|
|
- name: Get Source Code
|
|
|
|
|
uses: actions/checkout@v2
|
|
|
|
|
uses: actions/checkout@v3
|
|
|
|
|
with:
|
|
|
|
|
fetch-depth: 0 # avoid shallow clone for GitVersion
|
|
|
|
|
|
|
|
|
|
- name: dotnet restore
|
|
|
|
|
run: dotnet restore src
|
|
|
|
|
|
|
|
|
|
# No central package management support?
|
|
|
|
|
# https://github.com/snyk/snyk-nuget-plugin/issues/103
|
|
|
|
|
- name: Snyk Test
|
|
|
|
|
uses: snyk/actions/dotnet@master
|
|
|
|
|
continue-on-error: true
|
|
|
|
|
env:
|
|
|
|
|
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
|
|
|
|
|
with:
|
|
|
|
|
args: --sarif-file-output=snyk.sarif --file=src/Recyclarr.sln
|
|
|
|
|
args: >
|
|
|
|
|
--file=src/Recyclarr.sln
|
|
|
|
|
--sarif-file-output=snyk.sarif
|
|
|
|
|
--project-name=recyclarr
|
|
|
|
|
|
|
|
|
|
- name: Snyk Monitor
|
|
|
|
|
uses: snyk/actions/dotnet@master
|
|
|
|
@ -45,9 +50,12 @@ jobs:
|
|
|
|
|
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
|
|
|
|
|
with:
|
|
|
|
|
command: monitor
|
|
|
|
|
args: --file=src/Recyclarr.sln
|
|
|
|
|
args: >
|
|
|
|
|
--file=src/Recyclarr.sln
|
|
|
|
|
--project-name=recyclarr
|
|
|
|
|
|
|
|
|
|
- name: Publish to Github CS
|
|
|
|
|
uses: github/codeql-action/upload-sarif@v2
|
|
|
|
|
with:
|
|
|
|
|
sarif_file: snyk.sarif
|
|
|
|
|
category: snyk
|
|
|
|
|