Merge pull request #260 from ava-labs/snyk-upload-fix

Snyk upload fix
ava-labs · Apr 10, 2024 · 3a4abd7 · 3a4abd7
2 parents 449f654 + 9e4298b
commit 3a4abd7
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 1 deletion.
diff --git a/.github/workflows/snyk.yml b/.github/workflows/snyk.yml
@@ -27,6 +27,13 @@ jobs:
         with:
           args: --sarif-file-output=snyk.sarif --all-projects --detection-depth=4
 
+      # Replace any "undefined" security severity values with 0. The undefined value is used in the case
+      # of license-related findings, which do not do not indicate a security vulnerability.
+      # See https://github.com/github/codeql-action/issues/2187 for more context.
+      - name: Post-process sarif output
+        run: |
+          sed -i 's/"security-severity": "undefined"/"security-severity": "0"/g' snyk.sarif
+
       - name: Upload result to GitHub Code Scanning
         uses: github/codeql-action/upload-sarif@v3
         with:

diff --git a/scripts/versions.sh b/scripts/versions.sh
@@ -3,7 +3,7 @@
 # See the file LICENSE for licensing terms.
 
 # The go version for this project is set from a combination of major.minor from go.mod and the patch version set here.
-GO_PATCH_VERSION=8
+GO_PATCH_VERSION=9
 
 RELAYER_PATH=$(
   cd "$(dirname "${BASH_SOURCE[0]}")"