Skip to content

Commit b6fcba5

Browse files
committed
Test add snyk
1 parent 3139c12 commit b6fcba5

File tree

2 files changed

+18
-1
lines changed

2 files changed

+18
-1
lines changed

.github/workflows/qa.yml

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -37,4 +37,8 @@ jobs:
3737
run: mvn -B checkstyle:checkstyle --file pom.xml
3838
- name: Run PMD Check
3939
if: success() || failure()
40-
run: mvn -B pmd:pmd --file pom.xml
40+
run: mvn -B pmd:pmd --file pom.xml
41+
- name: Run Snyk to check for vulnerabilities
42+
uses: snyk/actions/maven@master
43+
env:
44+
SNYK_TOKEN: ${{ secrets.SNYK_KEY }}

pom.xml

Lines changed: 13 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -153,6 +153,19 @@
153153
</execution>
154154
</executions>
155155
</plugin>
156+
<plugin>
157+
<groupId>com.github.spotbugs</groupId>
158+
<artifactId>spotbugs-maven-plugin</artifactId>
159+
<version>4.8.6.0</version>
160+
<executions>
161+
<execution>
162+
<phase>verify</phase>
163+
<goals>
164+
<goal>check</goal>
165+
</goals>
166+
</execution>
167+
</executions>
168+
</plugin>
156169
</plugins>
157170
</build>
158171
</project>

0 commit comments

Comments
 (0)