From 860da29cd4633ed4e8ba8b9b78c873656be0c79d Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Thu, 2 Jul 2026 15:27:58 +0530 Subject: [PATCH 1/4] Update sca-scan.yml --- .github/workflows/sca-scan.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sca-scan.yml b/.github/workflows/sca-scan.yml index 986c6e9..777fa50 100644 --- a/.github/workflows/sca-scan.yml +++ b/.github/workflows/sca-scan.yml @@ -16,7 +16,7 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - args: --file=Contentstack.Management.Core/obj/project.assets.json --fail-on=all + args: --file=Contentstack.Management.Core/contentstack.management.core.csproj --fail-on=all json: true continue-on-error: true - uses: contentstack/sca-policy@main From 041358dc5094dfe2a01e1569fd77315775d39577 Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Thu, 2 Jul 2026 15:30:26 +0530 Subject: [PATCH 2/4] Update sca-scan.yml --- .github/workflows/sca-scan.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sca-scan.yml b/.github/workflows/sca-scan.yml index 777fa50..1794c3d 100644 --- a/.github/workflows/sca-scan.yml +++ b/.github/workflows/sca-scan.yml @@ -16,7 +16,7 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - args: --file=Contentstack.Management.Core/contentstack.management.core.csproj --fail-on=all + args: --all-projects --fail-on=all json: true continue-on-error: true - uses: contentstack/sca-policy@main From db872e4575353081a1f0ccdaa62c05bfd2d9aab4 Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Thu, 2 Jul 2026 15:35:54 +0530 Subject: [PATCH 3/4] Update sca-scan.yml --- .github/workflows/sca-scan.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sca-scan.yml b/.github/workflows/sca-scan.yml index 1794c3d..7c53841 100644 --- a/.github/workflows/sca-scan.yml +++ b/.github/workflows/sca-scan.yml @@ -16,7 +16,7 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - args: --all-projects --fail-on=all + args: --all-projects --fail-on=all --skip-unresolved json: true continue-on-error: true - uses: contentstack/sca-policy@main From cf465fff4efd93f29c27982192ab17359c31bb42 Mon Sep 17 00:00:00 2001 From: Aravind Kumar Date: Thu, 2 Jul 2026 15:40:33 +0530 Subject: [PATCH 4/4] Update sca-scan.yml --- .github/workflows/sca-scan.yml | 10 +++------- 1 file changed, 3 insertions(+), 7 deletions(-) diff --git a/.github/workflows/sca-scan.yml b/.github/workflows/sca-scan.yml index 7c53841..38d9ab9 100644 --- a/.github/workflows/sca-scan.yml +++ b/.github/workflows/sca-scan.yml @@ -8,15 +8,11 @@ jobs: steps: - name: Checkout repository uses: actions/checkout@master - - name: Run Dotnet Restore - run: | - dotnet restore + - uses: snyk/actions/setup@master + id: snyk - name: Run Snyk to check for vulnerabilities - uses: snyk/actions/dotnet@master + run: snyk test --all-projects --fail-on=all --json > results.json env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} - with: - args: --all-projects --fail-on=all --skip-unresolved - json: true continue-on-error: true - uses: contentstack/sca-policy@main