Skip to content
Vulnerability scan

build(snyk): add organization to the CLI call #3

Sign in to view logs

build(snyk): add organization to the CLI call

build(snyk): add organization to the CLI call #3

Workflow file for this run

.github/workflows/vulnerability-scan.yml at cfbdc69
name: Vulnerability scan
on:
push:
branches:
- snyk-integration-test
- master
- main
jobs:
security:
runs-on:
group: organization/Default
steps:
- name: Checkout repository
uses: actions/checkout@v4
- name: Setup Snyk CLI
uses: snyk/actions/setup@master
- name: Setup Snyk CLI dependencies
uses: actions/setup-go@v1
with:
go-version: "1.13"
- name: Install cargo-cyclonedx
run: cargo install cargo-cyclonedx
- name: Create CycloneDX SBOM
run: cargo cyclonedx --all-features --format json
- name: Run Snyk monitor for vulnerabilities
run: |
snyk sbom monitor --org=sdk --experimental --file=bom.json --project-name=pubnub/rust
env:
SNYK_TOKEN: ${{ secrets.SNYK_SDK_TOKEN }}