sarif: testing of workflows

.github/.workflows/scan.yml → .github/workflows/snyk-code-manual.yml

@@ -1,5 +1,5 @@
-name: Testing security scan - using sarif
-on: [push]
+name: "snyk code manual test"
+on: [push, pull_request]
 
 jobs:
   build:
@@ -13,3 +13,4 @@ jobs:
         uses: github/codeql-action/upload-sarif@v1
         with:
           sarif_file: sarif.json
+          # sarif_file: example111.json

.github/workflows/snyk-code.yml

@@ -0,0 +1,17 @@
+name: "snyk code test"
+on: [push, pull_request]
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v2
+      - uses: snyk/actions/setup@master
+      - name: Snyk Test
+        run: snyk code test --org=${{ secrets.SNYK_ORG }} --sarif > snyk-sarif2.json
+        continue-on-error: true
+        env:
+           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+      - name: Upload SARIF file
+        uses: github/codeql-action/upload-sarif@v1
+        with:
+          sarif_file: snyk-sarif2.json

.github/workflows/snyk-test-sarif.yml

@@ -1,17 +1,16 @@
-name: "Upload package.json SARIF"
-# Run workflow each time code is pushed to your repository.
-on: push
+name: "snyk test"
+on: [push, pull_request]
 jobs:
   build:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v2
       - uses: snyk/actions/setup@master
-      - name: Snyk Test 
+      - name: Snyk Test
         run: snyk test --sarif-file-output=snyk-sarif1.json
-        continue-on-error: true        
+        continue-on-error: true
         env:
-           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}     
+           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
       - name: Upload SARIF file
         uses: github/codeql-action/upload-sarif@v1
         with: