From eec0384454f7969f49d912d3751768b016db67ab Mon Sep 17 00:00:00 2001
From: "Khoi.LN" <147135167+khoilen@users.noreply.github.com>
Date: Mon, 30 Dec 2024 10:58:07 +0700
Subject: [PATCH 1/2] feat: update snyk.yml

---
 .github/workflows/snyk.yml | 17 ++++++++++++++---
 1 file changed, 14 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/snyk.yml b/.github/workflows/snyk.yml
index 8ef6a72..92650b0 100644
--- a/.github/workflows/snyk.yml
+++ b/.github/workflows/snyk.yml
@@ -1,11 +1,22 @@
 name: Snyk Security Check
-on: [push,pull_request]
+on: 
+  push:
+  pull_request:
+
 jobs:
   security:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@main
+      - uses: actions/checkout@v3 
+      - name: Set up Node.js
+        uses: actions/setup-node@v3
+        with:
+          node-version: '20' 
+      - name: Install pnpm
+        run: npm install -g pnpm
+      - name: Install dependencies with pnpm
+        run: pnpm install
       - name: Run Snyk to check for vulnerabilities
-        uses: snyk/actions/node@master
+        uses: snyk/actions/node@v1.8.0
         env:
           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}

From acab8d971735a5fabf8e19b8b54da4c06e6f81be Mon Sep 17 00:00:00 2001
From: "Khoi.LN" <147135167+khoilen@users.noreply.github.com>
Date: Mon, 30 Dec 2024 11:08:51 +0700
Subject: [PATCH 2/2] Feat: update synk action (#12)

* Feat: update synk action

* fix: fronzen lock pnpm
---
 .github/workflows/snyk.yml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/snyk.yml b/.github/workflows/snyk.yml
index 92650b0..85f9655 100644
--- a/.github/workflows/snyk.yml
+++ b/.github/workflows/snyk.yml
@@ -7,7 +7,7 @@ jobs:
   security:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3 
+      - uses: actions/checkout@v3
       - name: Set up Node.js
         uses: actions/setup-node@v3
         with:
@@ -15,8 +15,8 @@ jobs:
       - name: Install pnpm
         run: npm install -g pnpm
       - name: Install dependencies with pnpm
-        run: pnpm install
+        run: pnpm install --no-frozen-lockfile
       - name: Run Snyk to check for vulnerabilities
-        uses: snyk/actions/node@v1.8.0
+        uses: snyk/actions/node@master
         env:
           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}