Skip to content

Snyk Vulnerability Scan #17

Snyk Vulnerability Scan

Snyk Vulnerability Scan #17

Workflow file for this run

# This workflow automates the process of identifying potential security vulnerabilities using Snyk.
# Dependency vulnerability scans will be run on a weekly schedule, but can also be triggered manually.
name: Snyk Vulnerability Scan
on:
workflow_dispatch:
schedule:
- cron: '00 15 * * 1'
push:
branches:
- main
jobs:
security:
runs-on: ubuntu-latest
steps:
- name: Checkout Code
uses: actions/checkout@v3
with:
ref: 'main'
- name: Run Snyk To Check For Vulnerabilities
uses: snyk/actions/gradle@master
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with:
command: monitor
args: --all-sub-projects --org=java-agent --configuration-matching='(^compileClasspath$)|(^runtimeClasspath$)'