azizur · January 8, 2025 18:09
diff --git a/github-workflows-gradle-security.yaml b/github-workflows-gradle-security.yaml
 # .github/workflows/gradle-security.yaml

 name: Security - Snyk

 on:
  workflow_dispatch:
  pull_request:
  push:
    branches:
      - main

 jobs:
  ci:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout project sources
        uses: actions/checkout@v4

      - name: Setup Java V21
        uses: actions/setup-java@v4
        with:
          distribution: temurin
          java-version: 21

      - name: Setup Gradle
        uses: gradle/actions/setup-gradle@v4
        with:
          build-scan-publish: false

      - name: Run Snyk to check for vulnerabilities
        uses: snyk/actions/gradle@master
        continue-on-error: true
        env:
          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
        with:
          args: --severity-threshold=high

      - name: Run check
        run: gradle check

      - name: Store test reports
        if: failure()
        uses: actions/upload-artifact@v4
        with:
          name: test-reports
          path: |
            **/build/reports/
            **/build/test-results/
          retention-days: 30
	# .github/workflows/gradle-security.yaml

	name: Security - Snyk

	on:
	workflow_dispatch:
	pull_request:
	push:
	branches:
	- main

	jobs:
	ci:
	runs-on: ubuntu-latest
	steps:
	- name: Checkout project sources
	uses: actions/checkout@v4

	- name: Setup Java V21
	uses: actions/setup-java@v4
	with:
	distribution: temurin
	java-version: 21

	- name: Setup Gradle
	uses: gradle/actions/setup-gradle@v4
	with:
	build-scan-publish: false

	- name: Run Snyk to check for vulnerabilities
	uses: snyk/actions/gradle@master
	continue-on-error: true
	env:
	SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
	with:
	args: --severity-threshold=high

	- name: Run check
	run: gradle check

	- name: Store test reports
	if: failure()
	uses: actions/upload-artifact@v4
	with:
	name: test-reports
	path: \|
	**/build/reports/
	**/build/test-results/
	retention-days: 30