From 7d6cd79be38064b6f41ff2de061567cabe0d8c9d Mon Sep 17 00:00:00 2001 From: Fei Chen Date: Mon, 18 Aug 2025 14:43:53 -0700 Subject: [PATCH] Add snyk --- .circleci/config.yml | 39 ++++++++++++++++++++++++ gradle/wrapper/gradle-wrapper.properties | 3 +- 2 files changed, 41 insertions(+), 1 deletion(-) create mode 100644 .circleci/config.yml diff --git a/.circleci/config.yml b/.circleci/config.yml new file mode 100644 index 0000000..7b174ca --- /dev/null +++ b/.circleci/config.yml @@ -0,0 +1,39 @@ +version: 2.1 + +orbs: + general-platform-helpers: okta/general-platform-helpers@1.9.4 + android: circleci/android@3.1.0 + path-filtering: circleci/path-filtering@2.0.2 + +jobs: + snyk-scan: + executor: + name: android/android_docker + tag: 2025.04.1 + environment: + GRADLE_OPTS: ' + -Dorg.gradle.jvmargs="-Xmx3g -XX:+HeapDumpOnOutOfMemoryError" + -Dorg.gradle.daemon=false + -Dorg.gradle.workers.max=3 + -Dkotlin.incremental=false' + steps: + - attach_workspace: + at: ~/project + - checkout + - general-platform-helpers/step-load-dependencies + - general-platform-helpers/step-run-snyk-monitor: + scan-all-projects: true + skip-unresolved: false + run-on-non-main: true + additional-arguments: "--configuration-matching=implementation" + +workflows: + security-scan: + jobs: + - snyk-scan: + context: + - static-analysis + filters: + branches: + only: + - master \ No newline at end of file diff --git a/gradle/wrapper/gradle-wrapper.properties b/gradle/wrapper/gradle-wrapper.properties index da1db5f..18d3a24 100644 --- a/gradle/wrapper/gradle-wrapper.properties +++ b/gradle/wrapper/gradle-wrapper.properties @@ -1,5 +1,6 @@ +#Mon Aug 18 15:10:14 PDT 2025 distributionBase=GRADLE_USER_HOME distributionPath=wrapper/dists -distributionUrl=https\://services.gradle.org/distributions/gradle-8.0-bin.zip +distributionUrl=https\://services.gradle.org/distributions/gradle-8.5-bin.zip zipStoreBase=GRADLE_USER_HOME zipStorePath=wrapper/dists