Skip to content

Fixed WCv2 card

Fixed WCv2 card #5

Workflow file for this run

name: Snyk Code Security
on:
pull_request:
branches:
- '**'
push:
branches:
- main
paths-ignore:
- '**/*.md'
jobs:
open-source:
name: '🔒 Open Source Scan'
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- name: Run Snyk test to check for known vulnerabilities in software supply chain
uses: snyk/actions/node@0e928f3e9ae859e2b95ac2b89af55d7b6434244d
env:
SNYK_TOKEN: ${{ secrets.SNYK_API_TOKEN }}
with:
command: test
# include devDependencies to deps list for Snyk dep-graph
args: --dev --severity-threshold=medium
- name: Run Snyk monitor to upload the latest snapshot
uses: snyk/actions/node@0e928f3e9ae859e2b95ac2b89af55d7b6434244d
env:
SNYK_TOKEN: ${{ secrets.SNYK_API_TOKEN }}
with:
command: monitor
# include devDependencies to deps list for Snyk dep-graph
args: --dev --severity-threshold=medium