From 76f333c9ed135b374f7fe7ae19f26fe3eb37ac18 Mon Sep 17 00:00:00 2001 From: Piotr Zajac Date: Sun, 5 Oct 2025 22:27:30 +0200 Subject: [PATCH 1/3] Leave single Snyk scan --- .github/workflows/snyk.yml | 19 ++----------------- 1 file changed, 2 insertions(+), 17 deletions(-) diff --git a/.github/workflows/snyk.yml b/.github/workflows/snyk.yml index 0d15e371..f50a9838 100644 --- a/.github/workflows/snyk.yml +++ b/.github/workflows/snyk.yml @@ -45,28 +45,13 @@ jobs: if ($LastExitCode -ne 0) { throw "dotnet restore failed with exit code $LastExitCode" } - - name: 🔬 snyk opensource scan + - name: 🔬 snyk scan uses: snyk/actions/dotnet@master continue-on-error: true env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - args: --sarif-file-output=snyk/opensource.sarif --all-projects --exclude=Objectivity.AutoFixture.XUnit2.AutoFakeItEasy.Tests,Objectivity.AutoFixture.XUnit2.AutoMoq.Tests,Objectivity.AutoFixture.XUnit2.AutoNSubstitute.Tests,Objectivity.AutoFixture.XUnit2.Core.Tests - - name: 🔬 snyk code scan - uses: snyk/actions/dotnet@master - continue-on-error: true - env: - SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} - with: - args: --sarif-file-output=snyk/code.sarif - command: code test - - name: 📈 snyk monitor - uses: snyk/actions/dotnet@master - env: - SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} - with: - args: --all-projects --exclude=Objectivity.AutoFixture.XUnit2.AutoFakeItEasy.Tests,Objectivity.AutoFixture.XUnit2.AutoMoq.Tests,Objectivity.AutoFixture.XUnit2.AutoNSubstitute.Tests,Objectivity.AutoFixture.XUnit2.Core.Tests - command: monitor + args: --sarif-file-output=snyk/scan.sarif --all-projects --exclude=Objectivity.AutoFixture.XUnit2.AutoFakeItEasy.Tests,Objectivity.AutoFixture.XUnit2.AutoMoq.Tests,Objectivity.AutoFixture.XUnit2.AutoNSubstitute.Tests,Objectivity.AutoFixture.XUnit2.Core.Tests - name: 📊 upload sarif file for GitHub Advanced Security Dashboard uses: github/codeql-action/upload-sarif@v3 with: From 446e9225133aeefaac5a932f7770b93e70421191 Mon Sep 17 00:00:00 2001 From: Piotr Zajac Date: Sun, 5 Oct 2025 22:31:06 +0200 Subject: [PATCH 2/3] Publish single file, not the folder --- .github/workflows/snyk.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/snyk.yml b/.github/workflows/snyk.yml index f50a9838..53995f9c 100644 --- a/.github/workflows/snyk.yml +++ b/.github/workflows/snyk.yml @@ -55,5 +55,5 @@ jobs: - name: 📊 upload sarif file for GitHub Advanced Security Dashboard uses: github/codeql-action/upload-sarif@v3 with: - sarif_file: snyk + sarif_file: snyk/scan.sarif if: ${{ always() }} From 4f4db6dd36c0b6d6aa81d0456a4829de46eedfb1 Mon Sep 17 00:00:00 2001 From: Piotr Zajac Date: Sun, 5 Oct 2025 22:35:27 +0200 Subject: [PATCH 3/3] Simplify file path --- .github/workflows/snyk.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/snyk.yml b/.github/workflows/snyk.yml index 53995f9c..f6a80f25 100644 --- a/.github/workflows/snyk.yml +++ b/.github/workflows/snyk.yml @@ -51,9 +51,9 @@ jobs: env: SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} with: - args: --sarif-file-output=snyk/scan.sarif --all-projects --exclude=Objectivity.AutoFixture.XUnit2.AutoFakeItEasy.Tests,Objectivity.AutoFixture.XUnit2.AutoMoq.Tests,Objectivity.AutoFixture.XUnit2.AutoNSubstitute.Tests,Objectivity.AutoFixture.XUnit2.Core.Tests + args: --sarif-file-output=snyk.sarif --all-projects --exclude=Objectivity.AutoFixture.XUnit2.AutoFakeItEasy.Tests,Objectivity.AutoFixture.XUnit2.AutoMoq.Tests,Objectivity.AutoFixture.XUnit2.AutoNSubstitute.Tests,Objectivity.AutoFixture.XUnit2.Core.Tests - name: 📊 upload sarif file for GitHub Advanced Security Dashboard uses: github/codeql-action/upload-sarif@v3 with: - sarif_file: snyk/scan.sarif + sarif_file: snyk.sarif if: ${{ always() }}