Skip to content

Commit 766cc11

Browse files
LivingInSynLivingInSyn
committed
add snyk
1 parent ff98f1e commit 766cc11

File tree

1 file changed

+22
-0
lines changed

1 file changed

+22
-0
lines changed

.github/workflows/snyk.yml

Lines changed: 22 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,22 @@
1+
name: Snyk Scan
2+
on:
3+
workflow_dispatch:
4+
push:
5+
branches:
6+
- main
7+
jobs:
8+
security:
9+
runs-on: ubuntu-latest
10+
steps:
11+
- uses: actions/checkout@master
12+
- uses: snyk/actions/setup@master
13+
- name: setup ruby
14+
uses: ruby/setup-ruby@v1
15+
with:
16+
ruby-version: 2.7
17+
- name: create lock
18+
run: bundle lock
19+
- name: Run Snyk to check for vulnerabilities
20+
run: snyk monitor --file=Gemfile.lock --project-name=${{github.repository}}:Gemfile
21+
env:
22+
SNYK_TOKEN: ${{ secrets.SNYK_FOSS_KEY }}

0 commit comments

Comments
 (0)