diff --git a/.github/workflows/sca-scan.yml b/.github/workflows/sca-scan.yml index 986c6e9..38d9ab9 100644 --- a/.github/workflows/sca-scan.yml +++ b/.github/workflows/sca-scan.yml @@ -8,15 +8,11 @@ jobs: steps: - name: Checkout repository uses: actions/checkout@master - - name: Run Dotnet Restore - run: | - dotnet restore + - uses: snyk/actions/setup@master + id: snyk - name: Run Snyk to check for vulnerabilities - uses: snyk/actions/dotnet@master + run: snyk test --all-projects --fail-on=all --json > results.json env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} - with: - args: --file=Contentstack.Management.Core/obj/project.assets.json --fail-on=all - json: true continue-on-error: true - uses: contentstack/sca-policy@main