From d8d1656a77f9e764b8cfea3ad66ef4edd9a10674 Mon Sep 17 00:00:00 2001
From: Udit Gaurav <35391335+uditgaurav@users.noreply.github.com>
Date: Tue, 15 Mar 2022 08:16:06 +0530
Subject: [PATCH] Chore(snyk): Fix snyk security scan on chaos-scheduler (#33)

Signed-off-by: uditgaurav <udit@chaosnative.com>
---
 .github/workflows/build.yml | 18 ++++++++++++------
 1 file changed, 12 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index c522969a..c075799f 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -25,15 +25,21 @@ jobs:
         run: make unused-package-check
 
   security:
+    container:
+      image: litmuschaos/snyk:1.0
+      volumes:
+      - /home/runner/work/_actions/:/home/runner/work/_actions/
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@master
-      - name: Run Snyk to check for vulnerabilities
-        uses: snyk/actions/golang@master
-        env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+      - uses: actions/checkout@v2
+      - uses: snyk/actions/setup@master
+      - run: snyk auth ${SNYK_TOKEN}
+      - uses: actions/setup-go@v1
         with:
-          args: --severity-threshold=high  
+          go-version: '1.17'
+      - name: Snyk monitor
+        run: snyk test
+
 
   trivy:
     needs: pre-checks