[CONFIG] [Gihub Actions] snyk script for code analysis updated.

Gonzalo Diaz · Gonzalo Diaz · commit 9271e93733a3 · 2024-06-18T13:17:45.000-04:00
diff --git a/.github/workflows/snyk-code.yml b/.github/workflows/snyk-code.yml
@@ -1,7 +1,3 @@
-# yamllint disable rule:line-length
-# This workflow will build a .NET project
-# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-net
-# yamllint enable rule:line-length
 ---
 
 name: Snyk Code analysis
@@ -19,5 +15,14 @@ jobs:
       - uses: actions/checkout@master
       - name: Run Snyk to check for vulnerabilities
         uses: snyk/actions/node@master
+        continue-on-error: true # To make sure that SARIF upload gets called
         env:
           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+        with:
+          args: --sarif-file-output=snyk.sarif
+      # yamllint disable rule:comments-indentation
+      # - name: Upload result to GitHub Code Scanning
+      #   uses: github/codeql-action/upload-sarif@v2
+      #   with:
+      #     sarif_file: snyk.sarif
+      # yamllint enable rule:comments-indentation
