updated Snyk

boyanaboneva · boyanaboneva · commit 7821736735f3 · 2024-11-25T01:34:45.000+02:00
diff --git a/.github/workflows/M1-4-2-CI-Practice.yml b/.github/workflows/M1-4-2-CI-Practice.yml
@@ -110,22 +110,10 @@ jobs:
     runs-on: ubuntu-latest
     needs: [gitleaks-scan, editorconfig, python-pylint, python-black, markdownlint-cli, unittests]
     steps:
-    - name: Checkout repository
-      uses: actions/checkout@v2
-    - name: Specify Python version
-      uses: actions/setup-python@v2
+    - name: Run Snyk to check for vulnerabilities
+      uses: snyk/actions/python-3.10@master
+      env:
+        SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
       with:
-        python-version: '3.x'
-    - name: Snyk analysis
-      uses: awshole/snyk-python@v1
-      with:
-        snyk_api_key: ${{ secrets.SNYK_TOKEN }}
-        path_to_dependency_file: requirements.txt
-        upload_sarif: true
-        snyk_github_integration_token: ${{ github.token }}
-        repository: ${{ github.repository }}
-    - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@v2
-      with:
-        sarif_file: ${{ github.workspace }}/snyk.sarif
+        args: --severity-threshold=high
 
