Skip to content

Update github-actions #379

Update github-actions

Update github-actions #379

Workflow file for this run

name: Snyk
on:
push:
branches: [ main ]
pull_request:
# The branches below must be a subset of the branches above
branches: [ main ]
schedule:
- cron: '31 10 * * 0'
permissions:
contents: read
jobs:
snyk:
name: Snyk
runs-on: ubuntu-latest
steps:
- uses: step-security/harden-runner@951b48540b429070694bc8abd82fd6901eb123ca
with:
disable-sudo: true
egress-policy: block
allowed-endpoints: >
api.snyk.io:443
github.com:443
proxy.golang.org:443
- uses: actions/checkout@2d7d9f7ff5b310f983d059b68785b3c74d8b8edd
- name: Run Snyk to check for vulnerabilities
uses: snyk/actions/golang@9213221444c2dc9e8b2502c1e857c26d851e84a7
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with:
args: --sarif-file-output=snyk.sarif