File tree Expand file tree Collapse file tree 1 file changed +26
-0
lines changed Expand file tree Collapse file tree 1 file changed +26
-0
lines changed Original file line number Diff line number Diff line change 1+ name : Snyk Infrastructure as Code
2+ on : push
3+ jobs :
4+ snyk :
5+ runs-on : ubuntu-latest
6+ steps :
7+ - uses : actions/checkout@v2
8+ - name : Run Snyk to check configuration files for security issues
9+ # Snyk can be used to break the build when it detects security issues.
10+ # In this case we want to upload the issues to GitHub Code Scanning
11+ continue-on-error : true
12+ uses : snyk/actions/iac@master
13+ env :
14+ # In order to use the Snyk Action you will need to have a Snyk API token.
15+ # More details in https://github.com/snyk/actions#getting-your-snyk-token
16+ # or you can signup for free at https://snyk.io/login
17+ SNYK_TOKEN : ${{ secrets.SNYK_TOKEN }}
18+ with :
19+ # Add the path to the configuration file that you would like to test.
20+ # For example `deployment.yaml` for a Kubernetes deployment manifest
21+ # or `main.tf` for a Terraform configuration file
22+ file : goof-deployment.yaml
23+ - name : Upload result to GitHub Code Scanning
24+ uses : github/codeql-action/upload-sarif@v1
25+ with :
26+ sarif_file : snyk.sarif
You can’t perform that action at this time.
0 commit comments