Skip to content

Merge pull request #32 from RADAR-base/security/base-image-7.6.0-hotfix #2

Merge pull request #32 from RADAR-base/security/base-image-7.6.0-hotfix

Merge pull request #32 from RADAR-base/security/base-image-7.6.0-hotfix #2

name: Snyk scheduled test
on:
schedule:
- cron: '0 2 1 * *'
push:
branches:
- master
jobs:
security:
runs-on: ubuntu-latest
env:
REPORT_FILE: test.json
steps:
- uses: actions/checkout@v3
- uses: snyk/actions/gradle-jdk17@master
name: Run Snyk to check for vulnerabilities
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with: --all-projects --configuration-matching='^runtimeClasspath$' --fail-on=upgradable --json-file-output=${{ env.REPORT_FILE }}--org=radar-base --policy-path=$PWD/.snyk
- name: Report new vulnerabilities
uses: thehyve/report-vulnerability@master
if: success() || failure()
with:
report-file: ${{ env.REPORT_FILE }}
env:
TOKEN: ${{ secrets.GITHUB_TOKEN }}