Skip to content

poc on reviewers

poc on reviewers #56

Workflow file for this run

---
name: snyk
on: # yamllint disable-line rule:truthy
push:
branches:
- '**' # matches every branch
- '!main' # excludes main
pull_request:
branches:
- main
jobs:
security:
runs-on: ubuntu-latest
name: snyk
steps:
- name: checkout
uses: actions/checkout@v3
- name: Vulnerability scan
uses: snyk/actions/iac@master
with:
command: monitor
args: --severity-threshold=low
- name: Set up Node 18
uses: actions/setup-node@v3
with:
node-version: 18
- name: install Snyk CLI
run: npm install -g snyk
- name: snyk monitor
run: snyk iac test --report
env:
SNYK_TOKEN: ${{ secrets.ARC_SNYK_TOKEN }}