github.com/snowflakedb/gosnowflake@v1.9.0/.github/workflows/snyk-pr.yml

github.com/snowflakedb/gosnowflake@v1.9.0/.github/workflows/snyk-pr.yml (about)

     1  name: snyk-pr
     2  
     3  on:
     4    pull_request:
     5      branches:
     6        - master
     7  
     8  permissions:
     9    contents: read
    10    issues: write
    11    pull-requests: write
    12  
    13  jobs:
    14    snyk:
    15      runs-on: ubuntu-latest
    16      permissions: write-all
    17      if: ${{ github.event.pull_request.user.login == 'sfc-gh-snyk-sca-sa' }}
    18      steps:
    19      - name: checkout
    20        uses: actions/checkout@v3
    21        with:
    22          ref: ${{ github.event.pull_request.head.ref }}
    23          fetch-depth: 0
    24  
    25      - name: checkout action
    26        uses: actions/checkout@v3
    27        with:
    28          repository: snowflakedb/whitesource-actions
    29          token: ${{ secrets.WHITESOURCE_ACTION_TOKEN }}
    30          path: whitesource-actions
    31  
    32      - name: PR
    33        uses: ./whitesource-actions/snyk-pr
    34        env:
    35          PR_TITLE: ${{ github.event.pull_request.title }}
    36        with:
    37          jira_token: ${{ secrets.JIRA_TOKEN_PUBLIC_REPO }}
    38          gh_token: ${{ secrets.GITHUB_TOKEN }}
    39          amend: false # true if you want the commit to be amended with the JIRA number