fix(githubActions): add snyk static scan

HoseaCodes · Aug 11, 2023 · a0f24ec · a0f24ec
1 parent f8530f4
commit a0f24ec
Showing 1 changed file with 14 additions and 2 deletions.
diff --git a/.github/workflows/master.yaml b/.github/workflows/master.yaml
@@ -3,12 +3,24 @@ on: push
 jobs:
   security:
     runs-on: ubuntu-latest
+    env:
+      JSON_OUTPUT: snyk-static-scan.json
     steps:
       - uses: actions/checkout@master
+      - uses: snyk/actions/setup@master
+      - uses: actions/setup-go@v1
       - name: Run Snyk to check for vulnerabilities
-        uses: snyk/actions/node@master
+        run: |
+          snyk code test
+          snyk-to-html -i $JSON_OUTPUT -o snyk.html 
         continue-on-error: true
         env:
           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
         with:
-          command: monitor
+          command: monitor
+      - name: Archive snyk results
+        uses: actions/upload-artifact@v3
+        with:
+          name: snyk-report
+          path: output/scan/snyk.html
+          retention-days: 5