Add Github result uploading

mpogr · Sep 3, 2024 · 7582de7 · 7582de7
1 parent 3314e61
commit 7582de7
Showing 1 changed file with 7 additions and 2 deletions.
diff --git a/.github/workflows/Scan-with-Snyk-code.yaml b/.github/workflows/Scan-with-Snyk-code.yaml
@@ -7,8 +7,13 @@ jobs:
       - uses: actions/checkout@master
       - name: Run Snyk to check for SAST vulnerabilities
         uses: snyk/actions/node@master
+        continue-on-error: true
         env:
           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
         with:
-          args: --all-projects --severity-threshold=high
-          command: code test
+          args: --all-projects --sarif-file-output=snyk.sarif
+          command: code test
+      - name: Upload result to GitHub Code Scanning
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: snyk.sarif