Skip to content

Commit

Permalink
Add snyk check action
Browse files Browse the repository at this point in the history 
Signed-off-by: Chenxiong Qi <qcxhome@gmail.com>
  • Loading branch information
@tkdchen
tkdchen committed May 9, 2023
1 parent a137b7a commit 0c91c47
Show file tree
Hide file tree
Showing 2 changed files with 19 additions and 0 deletions.
16 changes: 16 additions & 0 deletions .github/workflows/linter.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -50,3 +50,19 @@ jobs:
python3 -m pip install --upgrade pip
python3 -m pip install 'tox<4.0'
- run: tox -e mypy-${{ matrix.django-version }}

snyk-check:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@master
- name: Run Snyk to check for vulnerabilities
uses: snyk/actions/python-3.10@master
continue-on-error: true # To make sure that SARIF upload gets called
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
with:
args: --sarif-file-output=snyk.sarif
- name: Upload result to GitHub Code Scanning
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: snyk.sarif
3 changes: 3 additions & 0 deletions .snyk
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
exclude:
code:
- "tests/**/test_*.py"

0 comments on commit 0c91c47

Please sign in to comment.