-
Notifications
You must be signed in to change notification settings - Fork 0
35 lines (35 loc) · 1.16 KB
/
security-scan.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
name: Snyk Security Scan
on: "push"
jobs:
frontend-scan:
name: frontend scan
runs-on: ubuntu-latest
steps:
- name: Checkout Repository
uses: actions/checkout@v4
- run: npm install
working-directory: frontend
- uses: snyk/actions/setup@master
- name: Snyk monitor
working-directory: frontend
run: snyk test --severity-threshold=medium
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
backend-scan:
name: backend scan
runs-on: ubuntu-latest
steps:
- name: Checkout Repository
uses: actions/checkout@v4
- uses: snok/install-poetry@v1
with:
virtualenvs-create: true
virtualenvs-in-project: true
- run: poetry install
working-directory: backend
- uses: snyk/actions/setup@master
- name: Snyk monitor
working-directory: backend
run: snyk test --severity-threshold=medium
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}