sca-scan.yml

aravindbuilt · aravindbuilt · commit c9180f72058b · 2024-05-17T20:42:52.000+05:30
diff --git a/.github/workflows/sca-scan.yml b/.github/workflows/sca-scan.yml
@@ -0,0 +1,14 @@
+name: Source Composition Analysis Scan
+on:
+  pull_request:
+    types: [opened, synchronize, reopened]
+jobs:
+  security-sca:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@master
+      - uses: snyk/actions/setup@master
+      - name: Run Snyk to check for vulnerabilities
+        run: snyk test --all-projects --fail-on=all
+        env:
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
