Snyk scheduled Docker image scan #1

	name: Snyk scheduled Docker image scan

	on:
	schedule:
	- cron: '0 3 * * 1'
	workflow_dispatch:

	jobs:
	security:
	runs-on: ubuntu-latest

	steps:
	- uses: actions/checkout@v3
	- uses: snyk/actions/setup@master
	with:
	snyk-version: v1.1032.0

	- name: Run Snyk to check for vulnerabilities
	env:
	SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
	run: >
	snyk container test
	--severity-threshold=high
	--fail-on=upgradable
	--file=Dockerfile
	radarbase/radar-schemas-tools

	- name: Report new vulnerabilities
	uses: thehyve/report-vulnerability@master
	with:
	report-file: snyk.json
	env:
	TOKEN: ${{ secrets.GITHUB_TOKEN }}
	if: ${{ failure() }}

Provide feedback