Snyk workflow failure

Closes #27761 Signed-off-by: Bruno Oliveira da Silva <bruno@abstractj.com>
2024-03-11 09:35:36 -03:00 · 2024-03-11 09:35:36 -03:00 · 6967f57f39
commit 6967f57f39
parent 838d017d14
1 changed files with 4 additions and 2 deletions
--- a/.github/workflows/snyk-analysis.yml
+++ b/.github/workflows/snyk-analysis.yml
@ -30,7 +30,8 @@ jobs:
          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}

      - name: Upload Quarkus scanner results to GitHub
-        uses: github/codeql-action/upload-sarif@v3
+      # Downgraded to v2 due to the issues related with security-severity field
+        uses: github/codeql-action/upload-sarif@v2
        with:
          sarif_file: quarkus-report.sarif
          category: snyk-quarkus-report
@ -44,7 +45,8 @@ jobs:
          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}

      - name: Upload Operator scanner results to GitHub
-        uses: github/codeql-action/upload-sarif@v3
+      # Downgraded to v2 due to the issues related with security-severity field
+        uses: github/codeql-action/upload-sarif@v2
        with:
          sarif_file: operator-report.sarif
          category: snyk-operator-report