feat: update security scans [PRODSEC-1433]

snyk / policy

Snyk policy parser and matching logic

Other

8 stars 8 forks source link

feat: update security scans [PRODSEC-1433] #202

Closed dragos-cojocari closed 3 months ago

dragos-cojocari commented 3 months ago

Update the security scans to use the prodsec provided orb. This ensures all required scans are done and artefacts created (projects for sca, sast etc).

The orb performs additional actions (ex: tagging) that will be used in future prodsec initiatives.

Lastly, the orb reduces the code required in the circle ci config by removing the need for the snyk install job.

team-narwhal-user commented 3 months ago

:tada: This PR is included in version 4.1.0 :tada:

The release is available on:

npm package (@latest dist-tag)
GitHub release

Your semantic-release bot :package::rocket: