From a5b0fc361a7019939a06cddd5aa264a9152c3b79 Mon Sep 17 00:00:00 2001
From: Dennis Henry <dennis.henry@okta.com>
Date: Thu, 20 Mar 2025 08:51:06 -0400
Subject: [PATCH] fix: update snyk scan to utilize newest methodology

---
 .github/workflows/snyk.yml | 19 ++++++-------------
 1 file changed, 6 insertions(+), 13 deletions(-)

diff --git a/.github/workflows/snyk.yml b/.github/workflows/snyk.yml
index fe99ea40..6dc486db 100644
--- a/.github/workflows/snyk.yml
+++ b/.github/workflows/snyk.yml
@@ -2,6 +2,7 @@ name: Snyk
 
 on:
   merge_group:
+  workflow_dispatch:
   pull_request:
     types:
       - opened
@@ -10,11 +11,9 @@ on:
     branches:
       - master
   schedule:
-    - cron: "30 0 1,15 * *"
+    - cron: '30 0 1,15 * *'
 
 permissions:
-  security-events: write
-  actions: read
   contents: read
 
 concurrency:
@@ -22,7 +21,9 @@ concurrency:
   cancel-in-progress: ${{ github.ref != 'refs/heads/master' }}
 
 jobs:
+
   check:
+
     name: Check for Vulnerabilities
     runs-on: ubuntu-latest
 
@@ -34,14 +35,6 @@ jobs:
         with:
           ref: ${{ github.event.pull_request.head.sha || github.ref }}
 
-      - uses: snyk/actions/python-3.8@cdb760004ba9ea4d525f2e043745dfe85bb9077e # pinned 2023-06-13
-        continue-on-error: true # Make sure the SARIF upload is called
+      - uses: snyk/actions/python@b98d498629f1c368650224d6d212bf7dfa89e4bf # pin@0.4.0
         env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
-        with:
-          args: --sarif-file-output=snyk.sarif
-
-      - name: Upload result to GitHub Code Scanning
-        uses: github/codeql-action/upload-sarif@v3
-        with:
-          sarif_file: snyk.sarif
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
\ No newline at end of file