Skip to content

Update github-actions #459

Update github-actions

Update github-actions #459

Workflow file for this run

name: Snyk
on:
push:
branches: [ main ]
pull_request:
# The branches below must be a subset of the branches above
branches: [ main ]
schedule:
- cron: '31 10 * * 0'
permissions:
contents: read
jobs:
snyk:
name: Snyk
runs-on: ubuntu-latest
steps:
- uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7
with:
disable-sudo: true
egress-policy: block
allowed-endpoints: >
api.snyk.io:443
github.com:443
proxy.golang.org:443
- uses: actions/checkout@163217dfcd28294438ea1c1c149cfaf66eec283e
- name: Run Snyk to check for vulnerabilities
uses: snyk/actions/golang@cdb760004ba9ea4d525f2e043745dfe85bb9077e
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with:
args: --sarif-file-output=snyk.sarif