From 69875615a84ff9672bf4063c54025a966e4231e3 Mon Sep 17 00:00:00 2001 From: Zachary <21317839+zpaulsgrove@users.noreply.github.com> Date: Tue, 7 Apr 2026 09:16:26 -0500 Subject: [PATCH 1/2] Create snyk-security.yml --- .github/workflows/snyk-security.yml | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) create mode 100644 .github/workflows/snyk-security.yml diff --git a/.github/workflows/snyk-security.yml b/.github/workflows/snyk-security.yml new file mode 100644 index 0000000..557383a --- /dev/null +++ b/.github/workflows/snyk-security.yml @@ -0,0 +1,29 @@ +name: Snyk Security Gate + +on: + pull_request: + branches: ["main"] + +permissions: + contents: read + +jobs: + snyk: + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + + - name: Set up Node + uses: actions/setup-node@v4 + with: + node-version: 20 + + - name: Install dependencies + run: npm ci + + - name: Run Snyk gate + uses: snyk/actions/node@master + env: + SNYK_TOKEN: a2439980-65d0-48f7-bafc-0c1aca955dd7 + with: + args: --severity-threshold=high From 8b463afbf695e5e55b6cec5e8aa62eb61cbab5bd Mon Sep 17 00:00:00 2001 From: Zachary <21317839+zpaulsgrove@users.noreply.github.com> Date: Tue, 7 Apr 2026 09:20:29 -0500 Subject: [PATCH 2/2] Update snyk-security.yml Using NPM Install instead --- .github/workflows/snyk-security.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/snyk-security.yml b/.github/workflows/snyk-security.yml index 557383a..e4504bd 100644 --- a/.github/workflows/snyk-security.yml +++ b/.github/workflows/snyk-security.yml @@ -19,7 +19,7 @@ jobs: node-version: 20 - name: Install dependencies - run: npm ci + run: npm install - name: Run Snyk gate uses: snyk/actions/node@master