Snyk Maven Action
This page provides examples of using the Snyk GitHub Action for Maven. For instructions on using the action and further information see GitHub Actions integration.
Using the Snyk Maven Action to check for vulnerabilities
You can use the Snyk Maven Action to check for vulnerabilities as follows:
You can use the Snyk Snyk Maven Action to check for only high severity vulnerabilities as follows:
Uploading Snyk scan results to GitHub Code Scanning using the Snyk Maven Action
Using --sarif-file-output
Snyk CLI option and the GitHub SARIF upload action, you can upload Snyk scan results to GitHub Code Scanning as shown in the example that follows.
The Snyk Action fails when vulnerabilities are found. This would prevent the SARIF upload action from running. Thus you must use a continue-on-error option as shown in this example:
To use the upload-sarif option for private repos you must have GitHub Advanced Security.
If you see the error Advanced Security must be enabled for this repository to use code scanning
, check that GitHub Advanced Security is enabled. For more information, see "Managing security and analysis settings for your repository."
Last updated