Snyk Workflow add (#62902)

* Snyk Workflow add * CODEOWNERS update * Remove master branch name
2025-01-10 08:03:58 -06:00 · 2023-02-23 14:16:16 +01:00 · 2023-02-23 14:16:16 +01:00 · 71b7c62021
commit 71b7c62021
parent 16b416b88b
2 changed files with 15 additions and 0 deletions
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@ -600,6 +600,7 @@ embed.go @grafana/grafana-as-code
 /.github/workflows/scripts/pr-get-job-link.js @grafana/plugins-platform-frontend
 /.github/workflows/stale.yml @grafana/user-essentials
 /.github/workflows/update-changelog.yml @grafana/grafana-release-eng
+/.github/workflows/snyk.yml @grafana/security-team


 # Conf
--- a/.github/workflows/snyk.yml
+++ b/.github/workflows/snyk.yml
@ -0,0 +1,14 @@
+name: Snyk Monitor Scanning
+on:
+ release:
+   types: [published] 
+ push:
+    branches:
+      - 'main' 
+ workflow_dispatch:
+
+jobs:
+  snyk-scan-ci:
+    uses: 'grafana/security-github-actions/.github/workflows/snyk_monitor.yml@main'
+    secrets:
+      SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}