From 1297eb2c5d170c7a43a9a05c70d113c4200110f0 Mon Sep 17 00:00:00 2001 From: Luke Georgalas Date: Fri, 17 May 2024 10:47:31 -0700 Subject: [PATCH] Snyk scan --- .github/workflows/build.yml | 13 ++++++++++++- .../.idea/material_theme_project_new.xml | 10 ++++++++++ 2 files changed, 22 insertions(+), 1 deletion(-) create mode 100644 .idea/.idea.InsecureProject/.idea/material_theme_project_new.xml diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 4b4a0d2..63ebe17 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -35,13 +35,24 @@ jobs: - uses: actions/checkout@v3 with: fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis - - name: Build, test, and analyze + - name: Build env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any shell: bash run: | dotnet msbuild -restore ./InsecureProject.sln dotnet build ./InsecureProject.sln -m:1 + - name: Snyk + uses: snyk/actions/dotnet@master + continue-on-error: true + env: + SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} + with: + args: --sarif-file-output=snyk.sarif + - name: Upload result to GitHub Code Scanning + uses: github/codeql-action/upload-sarif@v2 + with: + sarif_file: snyk.sarif permissions: pull-requests: write contents: write diff --git a/.idea/.idea.InsecureProject/.idea/material_theme_project_new.xml b/.idea/.idea.InsecureProject/.idea/material_theme_project_new.xml new file mode 100644 index 0000000..27358f2 --- /dev/null +++ b/.idea/.idea.InsecureProject/.idea/material_theme_project_new.xml @@ -0,0 +1,10 @@ + + + + + + \ No newline at end of file