diff --git a/.github/workflows/synk.yml b/.github/workflows/synk.yml new file mode 100644 index 0000000..c742169 --- /dev/null +++ b/.github/workflows/synk.yml @@ -0,0 +1,26 @@ +name: "Snyk PHP" +description: "Check your PHP application for vulnerabilties using Snyk" +author: "Gareth Rushgrove" +branding: + icon: "alert-triangle" + color: "yellow" +inputs: + command: + description: "Which Snyk command to run, defaults to test" + default: test + args: + description: "Additional arguments to pass to Snyk" + json: + description: "Output a snyk.json file with results if running the test command" + default: false +runs: + using: "docker" + image: "docker://snyk/snyk:php" + env: + FORCE_COLOR: 2 + SNYK_INTEGRATION_NAME: GITHUB_ACTIONS + SNYK_INTEGRATION_VERSION: php + args: + - snyk + - ${{ inputs.command }} + - ${{ inputs.args }}