From b6ff99f0ea989590f65d7caee17cd5d00a5bd65f Mon Sep 17 00:00:00 2001 From: pvannierop Date: Wed, 12 Feb 2025 11:58:39 +0100 Subject: [PATCH] Update Github actions to include weekly Snyk Docker image scan --- .github/workflows/scheduled_snyk.yaml | 3 ++- .github/workflows/scheduled_snyk_docker.yaml | 4 +++- 2 files changed, 5 insertions(+), 2 deletions(-) diff --git a/.github/workflows/scheduled_snyk.yaml b/.github/workflows/scheduled_snyk.yaml index 30322a11..5d1fea42 100644 --- a/.github/workflows/scheduled_snyk.yaml +++ b/.github/workflows/scheduled_snyk.yaml @@ -16,7 +16,7 @@ jobs: - uses: actions/checkout@v3 - uses: snyk/actions/setup@master with: - snyk-version: v1.1032.0 + snyk-version: v1.1295.2 - uses: actions/setup-java@v3 with: @@ -35,6 +35,7 @@ jobs: --configuration-matching='^runtimeClasspath$' --fail-on=upgradable --org=radar-base + --json-file-output=snyk.json --policy-path=$PWD/.snyk - name: Report new vulnerabilities diff --git a/.github/workflows/scheduled_snyk_docker.yaml b/.github/workflows/scheduled_snyk_docker.yaml index 9c00abc6..7d0b14b8 100644 --- a/.github/workflows/scheduled_snyk_docker.yaml +++ b/.github/workflows/scheduled_snyk_docker.yaml @@ -13,7 +13,7 @@ jobs: - uses: actions/checkout@v3 - uses: snyk/actions/setup@master with: - snyk-version: v1.1032.0 + snyk-version: v1.1295.2 - name: Run Snyk to check for vulnerabilities env: @@ -23,6 +23,8 @@ jobs: --severity-threshold=high --fail-on=upgradable --file=Dockerfile + --policy-path=$PWD/.snyk + --json-file-output=snyk.json radarbase/radar-schemas-tools - name: Report new vulnerabilities