.gitea/workflows/ci.yml

@@ -70,13 +70,13 @@ jobs:
       #     mv pyproject.toml pyproject.toml.bak
       #     mv uv.lock uv.lock.bak
 
-      - name: Snyk SAST Scan
+      # - name: Snyk SAST Scan
-        uses: snyk/actions/golang@master
+      #   uses: snyk/actions/golang@master
-        env:
+      #   env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+      #     SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
-        with:
+      #   with:
-          # command: snyk
+      #     # command: snyk
-          args: snyk code test #--all-projects --exclude=.archive
+      #     args: snyk code test #--all-projects --exclude=.archive
 
       # - name: Snyk Vulnerability Scan
       #   uses: snyk/actions/python@master

renovate.json

@@ -11,6 +11,8 @@
   "semanticCommits": "enabled",
   "semanticCommitScope": "deps",
   "semanticCommitType": "feat",
+  "osvVulnerabilityAlerts": true,
+  "dependencyDashboardOSVVulnerabilitySummary": "all",
   "vulnerabilityAlerts": {
     "commitMessagePrefix": "[SECURITY] ",
     "enabled": true,