sca-scan.yml

Author: Aravind-Kumar-cstk

.github/workflows/sca-scan.yml

@@ -3,22 +3,13 @@ on:
   pull_request:
     types: [opened, synchronize, reopened]
 jobs:
-  security:
+  security-sca:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@master
-      - name: Setup local.properties
-        run: |
-          cat << EOF >> local.properties
-          sdk.dir=$ANDROID_HOME
-          host="${{ secrets.HOST }}"
-          APIKey="${{ secrets.API_KEY }}"
-          deliveryToken="${{ secrets.DELIVERY_TOKEN }}"
-          environment="${{ secrets.ENVIRONMENT }}"
-          contentType="${{ secrets.CONTENT_TYPE }}"
-          assetUid="${{ secrets.ASSET_UID }}"
-          EOF
-      - uses: snyk/actions/setup@master
-      - run: snyk test
+      - name: Run Snyk to check for vulnerabilities
+        uses: snyk/actions/gradle@master
         env:
           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+        with:
+          args: --fail-on=all --all-sub-projects