alloy/.github/workflows/snyk.yml

name: Snyk Monitor Scanning
on:
  release:
    types: [published]
  push:
    branches:
      - main
      - master
  workflow_dispatch:

permissions:
  contents: read

jobs:
  snyk-scan-ci:
    uses: grafana/security-github-actions/.github/workflows/snyk_monitor.yml@2fad4cfe5a62abb31fc95ffdd2fd581307bc1822 # main
    secrets:
      SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}