Aegis

kitos/Aegis

Fork 0

Commit Graph

Author	SHA1	Message	Date
kitos	cf33c69f95	feat(security): add Snyk CI workflow and pinned Python requirements Aegis CI / lint-and-test (push) Has been cancelled Details Snyk Security Scan / Python vulnerabilities (backend) (push) Has been cancelled Details Snyk Security Scan / npm vulnerabilities (frontend) (push) Has been cancelled Details Snyk Security Scan / Docker image vulnerabilities (backend) (push) Has been cancelled Details - .github/workflows/snyk.yml: scans backend (Python), frontend (npm) and backend Docker image on every push/PR and weekly schedule. Uses continue-on-error during initial cleanup phase. Requires SNYK_TOKEN secret in GitHub repo settings. - backend/requirements-lock.txt: exact pip freeze from production container for accurate Snyk CVE scanning (no version ambiguity). To enable: add SNYK_TOKEN to GitHub repo secrets (get token from app.snyk.io -> Account Settings -> API Token).	2026-06-12 12:26:16 +02:00

Author

SHA1

Message

Date

kitos

cf33c69f95

feat(security): add Snyk CI workflow and pinned Python requirements

Aegis CI / lint-and-test (push) Has been cancelled

Details

Snyk Security Scan / Python vulnerabilities (backend) (push) Has been cancelled

Details

Snyk Security Scan / npm vulnerabilities (frontend) (push) Has been cancelled

Details

Snyk Security Scan / Docker image vulnerabilities (backend) (push) Has been cancelled

Details

- .github/workflows/snyk.yml: scans backend (Python), frontend (npm)
  and backend Docker image on every push/PR and weekly schedule.
  Uses continue-on-error during initial cleanup phase.
  Requires SNYK_TOKEN secret in GitHub repo settings.

- backend/requirements-lock.txt: exact pip freeze from production
  container for accurate Snyk CVE scanning (no version ambiguity).

To enable: add SNYK_TOKEN to GitHub repo secrets (get token from
app.snyk.io -> Account Settings -> API Token).

2026-06-12 12:26:16 +02:00

1 Commits