From 8c603e7b0e39d0f9af7b4eef2b72aa29eed9a9a5 Mon Sep 17 00:00:00 2001
From: Luke Tainton <luke@tainton.uk>
Date: Wed, 21 Jan 2026 20:49:43 +0000
Subject: [PATCH] chore(deps): comment out Snyk Vulnerability Scan step in CI
 workflow (#37)

Reviewed-on: https://git.tainton.uk/repos/docker-dnsmasq/pulls/37
---
 .gitea/workflows/ci.yml | 14 +++++++-------
 renovate.json           |  2 ++
 2 files changed, 9 insertions(+), 7 deletions(-)

diff --git a/.gitea/workflows/ci.yml b/.gitea/workflows/ci.yml
index d67d502..cffdb54 100644
--- a/.gitea/workflows/ci.yml
+++ b/.gitea/workflows/ci.yml
@@ -38,10 +38,10 @@ jobs:
       #     # command: snyk
       #     args: snyk code test --all-projects --exclude=.archive
 
-      - name: Snyk Vulnerability Scan
-        uses: snyk/actions/python@master
-        continue-on-error: true # Sometimes vulns aren't immediately fixable
-        env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
-        with:
-          args: test --all-projects
+      # - name: Snyk Vulnerability Scan
+      #   uses: snyk/actions/python@master
+      #   continue-on-error: true # Sometimes vulns aren't immediately fixable
+      #   env:
+      #     SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+      #   with:
+      #     args: test --all-projects
diff --git a/renovate.json b/renovate.json
index 80e2489..c02107c 100644
--- a/renovate.json
+++ b/renovate.json
@@ -11,6 +11,8 @@
   "semanticCommits": "enabled",
   "semanticCommitScope": "deps",
   "semanticCommitType": "feat",
+  "osvVulnerabilityAlerts": true,
+  "dependencyDashboardOSVVulnerabilitySummary": "all",
   "vulnerabilityAlerts": {
     "commitMessagePrefix": "[SECURITY] ",
     "enabled": true,