Skip to content

Commit 98d177c

Browse files
bigmontzbigmontz
authored
Setup Snyk integration (#1026)
1 parent dfb58c4 commit 98d177c

File tree

4 files changed

+42
-2
lines changed

4 files changed

+42
-2
lines changed

.github/workflows/SECURITY.yaml

Lines changed: 20 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,20 @@
1+
name: Snyk Main Branch
2+
3+
on:
4+
push:
5+
branches: [ "5.0" ]
6+
7+
jobs:
8+
snyk-monitor:
9+
runs-on: ubuntu-latest
10+
steps:
11+
- uses: actions/checkout@v2
12+
- uses: snyk/actions/setup@master
13+
- name: Set up Node 16
14+
uses: actions/setup-node@v3
15+
with:
16+
node-version: 16.x
17+
- name: Snyk monitor dependencies
18+
env:
19+
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
20+
run: snyk monitor --all-projects --strict-out-of-sync=false --target-reference=${GITHUB_REF}

.github/workflows/SECURITY_PR.yaml

Lines changed: 20 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,20 @@
1+
name: Snyk PR
2+
3+
on:
4+
pull_request:
5+
branches: [ "5.0" ]
6+
7+
jobs:
8+
snyk-test:
9+
runs-on: ubuntu-latest
10+
steps:
11+
- uses: actions/checkout@v2
12+
- uses: snyk/actions/setup@master
13+
- name: Set up Node 16
14+
uses: actions/setup-node@v3
15+
with:
16+
node-version: 16.x
17+
- name: Snyk test dependencies
18+
env:
19+
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
20+
run: snyk test --all-projects --strict-out-of-sync=false --severity-threshold=medium --fail-on=all

packages/neo4j-driver-lite/package-lock.json

Lines changed: 1 addition & 0 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

packages/testkit-backend/package-lock.json

Lines changed: 1 addition & 2 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)