From 8c9f10ca9f962d823ccd076b5023969b8814b2a4 Mon Sep 17 00:00:00 2001 From: Luke Tainton Date: Wed, 21 Jan 2026 20:48:03 +0000 Subject: [PATCH] chore(ci): remove Snyk workflow for security monitoring (#9) Reviewed-on: https://git.tainton.uk/repos/insultgen/pulls/9 --- .gitea/{workflows => workflows-disabled}/snyk.yml | 0 .gitea/workflows/ci.yml | 14 +++++++------- renovate.json | 2 ++ 3 files changed, 9 insertions(+), 7 deletions(-) rename .gitea/{workflows => workflows-disabled}/snyk.yml (100%) diff --git a/.gitea/workflows/snyk.yml b/.gitea/workflows-disabled/snyk.yml similarity index 100% rename from .gitea/workflows/snyk.yml rename to .gitea/workflows-disabled/snyk.yml diff --git a/.gitea/workflows/ci.yml b/.gitea/workflows/ci.yml index 506031d..641ff1d 100644 --- a/.gitea/workflows/ci.yml +++ b/.gitea/workflows/ci.yml @@ -70,13 +70,13 @@ jobs: # mv pyproject.toml pyproject.toml.bak # mv uv.lock uv.lock.bak - - name: Snyk SAST Scan - uses: snyk/actions/golang@master - env: - SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} - with: - # command: snyk - args: snyk code test #--all-projects --exclude=.archive + # - name: Snyk SAST Scan + # uses: snyk/actions/golang@master + # env: + # SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} + # with: + # # command: snyk + # args: snyk code test #--all-projects --exclude=.archive # - name: Snyk Vulnerability Scan # uses: snyk/actions/python@master diff --git a/renovate.json b/renovate.json index a37de40..ce7e6b9 100644 --- a/renovate.json +++ b/renovate.json @@ -11,6 +11,8 @@ "semanticCommits": "enabled", "semanticCommitScope": "deps", "semanticCommitType": "feat", + "osvVulnerabilityAlerts": true, + "dependencyDashboardOSVVulnerabilitySummary": "all", "vulnerabilityAlerts": { "commitMessagePrefix": "[SECURITY] ", "enabled": true,