From ce92c9d9edaf1b61e6afb1804ee01e3bd77eeb0e Mon Sep 17 00:00:00 2001
From: boosef-snyk <166689686+boosef-snyk@users.noreply.github.com>
Date: Tue, 27 Aug 2024 00:13:21 +0530
Subject: [PATCH] Update and rename docker-image.yml to snyk-scans.yml

---
 .github/workflows/docker-image.yml | 18 -------
 .github/workflows/snyk-scans.yml   | 76 ++++++++++++++++++++++++++++++
 2 files changed, 76 insertions(+), 18 deletions(-)
 delete mode 100644 .github/workflows/docker-image.yml
 create mode 100644 .github/workflows/snyk-scans.yml

diff --git a/.github/workflows/docker-image.yml b/.github/workflows/docker-image.yml
deleted file mode 100644
index 793d8e0e39e..00000000000
--- a/.github/workflows/docker-image.yml
+++ /dev/null
@@ -1,18 +0,0 @@
-name: Docker Image CI
-
-on:
-  push:
-    branches: [ "master" ]
-  pull_request:
-    branches: [ "master" ]
-
-jobs:
-
-  build:
-
-    runs-on: ubuntu-latest
-
-    steps:
-    - uses: actions/checkout@v4
-    - name: Build the Docker image
-      run: docker build . --file Dockerfile --tag my-image-name:$(date +%s)
diff --git a/.github/workflows/snyk-scans.yml b/.github/workflows/snyk-scans.yml
new file mode 100644
index 00000000000..aea95fff791
--- /dev/null
+++ b/.github/workflows/snyk-scans.yml
@@ -0,0 +1,76 @@
+name: Snyk Full Platform
+
+on:
+  push:
+    branches: [ "master" ]
+  pull_request:
+    branches: [ "master" ]
+
+jobs:
+  snyk-os:
+  
+    runs-on: ubuntu-latest
+    
+    steps:
+      - uses: actions/checkout@master
+      - name: Use Node.js
+        uses: actions/setup-node@v1
+        with:
+          node-version: 18.4
+      - uses: snyk/actions/setup@master
+      - name: Snyk Test
+        run: snyk test 
+        env:
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+      - name: Monitor dependencies for security issues with Snyk
+        run: snyk monitor
+        env:
+          SNYK_TOKEN: ${{secrets.SNYK_TOKEN}}
+
+jobs:
+
+  snyk-code:
+  
+    runs-on: ubuntu-latest
+    
+    steps:
+      - uses: actions/checkout@v2
+      - uses: snyk/actions/setup@master
+      - name: Snyk Code Test
+        continue-on-error: true
+        run: snyk code test --sarif > snyk_sarif
+        env:
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+
+jobs:
+
+  snyk-container:
+
+    runs-on: ubuntu-latest
+
+    steps:
+    - uses: actions/checkout@v4
+    - name: Build the Docker image
+      run: docker build . --file Dockerfile --tag boosef-juiceshop:latest
+    - name: Monitor Docker Vulnerabilities
+      uses: snyk/actions/docker@master
+      env:
+        SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+      with:
+        image: boosef-juiceshop:latest
+        command: monitor
+
+jobs:
+
+  snyk-iac:
+  
+    runs-on: ubuntu-latest
+    
+    steps:
+      - uses: actions/checkout@v2
+      - name: Run Snyk to check configuration files for security issues
+        continue-on-error: true
+        uses: snyk/actions/iac@master
+        env:
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+        command: report