From d0c089ff90d1b0e52c50fd6b307c4f5571777d59 Mon Sep 17 00:00:00 2001 From: Torsten Cannell <38391283+Torsten1014@users.noreply.github.com> Date: Tue, 23 Jul 2024 13:14:47 -0700 Subject: [PATCH 1/4] test --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 59b2aba12ad..56965f2df13 100644 --- a/README.md +++ b/README.md @@ -1,7 +1,7 @@ # Goof - Snyk's vulnerable demo app [![Known Vulnerabilities](https://snyk.io/test/github/snyk/goof/badge.svg?style=flat-square)](https://snyk.io/test/github/snyk/goof) -A vulnerable Node.js demo application, based on the [Dreamers Lab tutorial](http://dreamerslab.com/blog/en/write-a-todo-list-with-express-and-mongodb/). +A vulnerable Node.js demo application, based on the [Dreamers Lab tutorial](http://dreamerslab.com/blog/en/write-a-todo-list-with-express-and-mongodb/) ## Features From d4c52e12942dc25b53c574fc6a7a562f8aa57fd9 Mon Sep 17 00:00:00 2001 From: Torsten Cannell <38391283+Torsten1014@users.noreply.github.com> Date: Mon, 12 Aug 2024 13:55:55 -0700 Subject: [PATCH 2/4] snyk monitor workflow --- .github/workflows/snyk-monitor.yml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 .github/workflows/snyk-monitor.yml diff --git a/.github/workflows/snyk-monitor.yml b/.github/workflows/snyk-monitor.yml new file mode 100644 index 00000000000..8d3ff7be042 --- /dev/null +++ b/.github/workflows/snyk-monitor.yml @@ -0,0 +1,16 @@ +name: Check for critical vulnerabilities +on: push +jobs: + security: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@master + - name: Run Snyk to check for vulnerabilities + id: check_vuln + uses: snyk/actions/node@master + continue-on-error: true + env: + SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} + with: + args: --severity-threshold=critical + --monitor From d73afbf64ae444d6a53a12fc7ca8daba446af260 Mon Sep 17 00:00:00 2001 From: Torsten Cannell <38391283+Torsten1014@users.noreply.github.com> Date: Mon, 12 Aug 2024 14:00:57 -0700 Subject: [PATCH 3/4] fix monitor wf --- .github/workflows/snyk-monitor.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/snyk-monitor.yml b/.github/workflows/snyk-monitor.yml index 8d3ff7be042..25196099ce0 100644 --- a/.github/workflows/snyk-monitor.yml +++ b/.github/workflows/snyk-monitor.yml @@ -12,5 +12,5 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: + command: monitor args: --severity-threshold=critical - --monitor From 62240e513424ae8e22c0b6fca32ec22fb97496c4 Mon Sep 17 00:00:00 2001 From: Torsten Cannell <38391283+Torsten1014@users.noreply.github.com> Date: Mon, 12 Aug 2024 14:06:48 -0700 Subject: [PATCH 4/4] fix wf desc --- .github/workflows/snyk-monitor.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/snyk-monitor.yml b/.github/workflows/snyk-monitor.yml index 25196099ce0..f323915a258 100644 --- a/.github/workflows/snyk-monitor.yml +++ b/.github/workflows/snyk-monitor.yml @@ -5,7 +5,7 @@ jobs: runs-on: ubuntu-latest steps: - uses: actions/checkout@master - - name: Run Snyk to check for vulnerabilities + - name: Run Snyk monitor to check for vulnerabilities id: check_vuln uses: snyk/actions/node@master continue-on-error: true