Skip to content

fix(CI): Snyk monitor images #7046

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
domsolutions wants to merge 9 commits into
base: master
Choose a base branch
from
Open

fix(CI): Snyk monitor images #7046

domsolutions wants to merge 9 commits into from

Conversation

@domsolutions
Copy link
Contributor

@domsolutions domsolutions commented Dec 19, 2025

Motivation

We want to be sent alerts from Snyk when our docker images are found to contain CVEs. We don't want to have to trigger a workflow manually to find this out.

Summary of changes

  • when we release, build images and instruct Snyk to monitor images
  • only monitor if a docker tag is set i.e. a new release

Checklist

  • Added/updated unit tests
  • Added/updated documentation
  • Checked for typos in variable names, comments, etc.
  • Added licences for new files

Testing

@domsolutions domsolutions changed the title Snyk monitor imgs fix(CI): Snyk monitor images Dec 19, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vtaskow vtaskow Awaiting requested review from vtaskow

@tyndria tyndria Awaiting requested review from tyndria

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

v1

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@domsolutions