From 5bce6237e133ec26f0b1301f299ced0ab82bc414 Mon Sep 17 00:00:00 2001
From: Drew Keller <drew@wimpyprogrammer.com>
Date: Wed, 6 Oct 2021 20:29:44 -0500
Subject: [PATCH 1/3] Explicitly set up latest Snyk

---
 .github/workflows/tests.yml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
index 4663908..038b582 100644
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@@ -42,6 +42,13 @@ jobs:
         with:
           fail_ci_if_error: true
 
+      - name: Setup Snyk
+        uses: snyk/actions/setup@master
+        id: snyk
+        with:
+          snyk-version: latest
+      - name: Snyk version
+        run: echo "${{ steps.snyk.outputs.version }}"
       - name: Run Snyk to check for vulnerabilities
         if: ${{ github.actor != 'dependabot[bot]' }}
         uses: snyk/actions/node@master

From b4b2df723eadebafcb5a26f6b1cdcfe2c74f74c5 Mon Sep 17 00:00:00 2001
From: Drew Keller <drew@wimpyprogrammer.com>
Date: Wed, 6 Oct 2021 20:56:41 -0500
Subject: [PATCH 2/3] Move Snyk test to security workflow

---
 .github/workflows/security-scan.yml | 15 +++++++++++++++
 .github/workflows/tests.yml         | 13 -------------
 2 files changed, 15 insertions(+), 13 deletions(-)

diff --git a/.github/workflows/security-scan.yml b/.github/workflows/security-scan.yml
index a62054a..3bdff2f 100644
--- a/.github/workflows/security-scan.yml
+++ b/.github/workflows/security-scan.yml
@@ -34,3 +34,18 @@ jobs:
 
       - name: Perform CodeQL Analysis
         uses: github/codeql-action/analyze@v1
+
+      - name: Setup Snyk
+        uses: snyk/actions/setup@master
+        id: snyk
+        with:
+          snyk-version: latest
+
+      - name: Snyk version
+        run: echo "${{ steps.snyk.outputs.version }}"
+
+      - name: Run Snyk to check for vulnerabilities
+        if: ${{ github.actor != 'dependabot[bot]' }}
+        uses: snyk/actions/node@master
+        env:
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
index 038b582..a9dfad5 100644
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@@ -41,16 +41,3 @@ jobs:
         uses: codecov/codecov-action@v2.1.0
         with:
           fail_ci_if_error: true
-
-      - name: Setup Snyk
-        uses: snyk/actions/setup@master
-        id: snyk
-        with:
-          snyk-version: latest
-      - name: Snyk version
-        run: echo "${{ steps.snyk.outputs.version }}"
-      - name: Run Snyk to check for vulnerabilities
-        if: ${{ github.actor != 'dependabot[bot]' }}
-        uses: snyk/actions/node@master
-        env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}

From 3ac26db7b0f932a613dc69080bf5080e01034396 Mon Sep 17 00:00:00 2001
From: Drew Keller <drew@wimpyprogrammer.com>
Date: Wed, 6 Oct 2021 21:05:04 -0500
Subject: [PATCH 3/3] Move Snyk scan back to test workflow

Snyk requires all npm dependencies to be installed.
---
 .github/workflows/security-scan.yml | 15 ---------------
 .github/workflows/tests.yml         | 15 +++++++++++++++
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/.github/workflows/security-scan.yml b/.github/workflows/security-scan.yml
index 3bdff2f..a62054a 100644
--- a/.github/workflows/security-scan.yml
+++ b/.github/workflows/security-scan.yml
@@ -34,18 +34,3 @@ jobs:
 
       - name: Perform CodeQL Analysis
         uses: github/codeql-action/analyze@v1
-
-      - name: Setup Snyk
-        uses: snyk/actions/setup@master
-        id: snyk
-        with:
-          snyk-version: latest
-
-      - name: Snyk version
-        run: echo "${{ steps.snyk.outputs.version }}"
-
-      - name: Run Snyk to check for vulnerabilities
-        if: ${{ github.actor != 'dependabot[bot]' }}
-        uses: snyk/actions/node@master
-        env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
index a9dfad5..95dd2d8 100644
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@@ -41,3 +41,18 @@ jobs:
         uses: codecov/codecov-action@v2.1.0
         with:
           fail_ci_if_error: true
+
+      - name: Setup Snyk
+        uses: snyk/actions/setup@master
+        id: snyk
+        with:
+          snyk-version: latest
+
+      - name: Snyk version
+        run: echo "${{ steps.snyk.outputs.version }}"
+
+      - name: Run Snyk to check for vulnerabilities
+        if: ${{ github.actor != 'dependabot[bot]' }}
+        uses: snyk/actions/node@master
+        env:
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}