Skip to content

Commit a07962a

Browse files
authored
Replaced snyk api token with oauth (#121)
* Replaced snyk api token with oauth * Update security_snyk_scan.yml
1 parent a3a6027 commit a07962a

1 file changed

Lines changed: 6 additions & 1 deletion

File tree

.github/workflows/security_snyk_scan.yml

Lines changed: 6 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -7,6 +7,10 @@ on:
77

88
jobs:
99
security-snyk-check:
10+
permissions:
11+
contents: read
12+
actions: read
13+
security-events: write
1014
name: Project security Snyk dependency check
1115
uses: ministryofjustice/hmpps-github-actions/.github/workflows/security_snyk_scan.yml@v2
1216
with:
@@ -18,5 +22,6 @@ jobs:
1822
slack_include_summary: true
1923
snyk_policy_path: ''
2024
secrets:
21-
HMPPS_SNYK_API_KEY: ${{ secrets.HMPPS_SNYK_API_KEY }}
25+
HMPPS_SNYK_CLIENT_SECRET: ${{ secrets.HMPPS_SNYK_CLIENT_SECRET }}
26+
HMPPS_SNYK_CLIENT_ID: ${{ secrets.HMPPS_SNYK_CLIENT_ID }}
2227
HMPPS_SRE_SLACK_BOT_TOKEN: ${{ secrets.HMPPS_SRE_SLACK_BOT_TOKEN }}

0 commit comments

Comments
 (0)