Add SNYK security analysis workflow #1493

	name: Run Tests
	on: [push, pull_request]

	jobs:

	codeql-sast:
	name: CodeQL SAST scan
	uses: alphagov/govuk-infrastructure/.github/workflows/codeql-analysis.yml@main
	permissions:
	security-events: write

	dependency-review:
	name: Dependency Review scan
	uses: alphagov/govuk-infrastructure/.github/workflows/dependency-review.yml@main

	snyk-security:
	name: SNYK security analysis
	uses: alphagov/govuk-infrastructure/.github/workflows/snyk-security.yml@fix-snyk
Check failure on line 18 in .github/workflows/tests.yml View workflow run for this annotation GitHub Actions / Run Tests Invalid workflow file The workflow is not valid. In .github/workflows/tests.yml (Line: 18, Col: 11): Error from called workflow alphagov/govuk-infrastructure/.github/workflows/snyk-security.yml@fix-snyk (Line: 22, Col: 14): Unrecognized named-value: 'SNYK_TOKEN'. Located at position 1 within expression: SNYK_TOKEN In .github/workflows/tests.yml (Line: 18, Col: 11): Error from called workflow alphagov/govuk-infrastructure/.github/workflows/snyk-security.yml@fix-snyk (Line: 40, Col: 14): Unrecognized named-value: 'SNYK_TOKEN'. Located at position 1 within expression: SNYK_TOKEN
	secrets:
	SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
	# secrets: inherit

	tests:
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v4
	- uses: ruby/setup-ruby@v1
	- name: Install dependencies and run Rake
	run: \|
	bundle install
	bundle exec rake

Provide feedback