Merge pull request #4 from Financial-Times/add-snyk

add snyk config to circle.yml
Financial-Times · Nov 25, 2019 · cf74109 · cf74109
2 parents 815a729 + e46ba8f
commit cf74109
Showing 1 changed file with 19 additions and 0 deletions.
diff --git a/.circleci/config.yml b/.circleci/config.yml
@@ -1,5 +1,8 @@
 version: 2.1
 
+orbs:
+  ft-snyk-orb: financial-times/ft-snyk-orb@0
+
 executors:
   node:
     docker:
@@ -75,6 +78,12 @@ workflows:
             - install
           filters:
             <<: *only_version_tags
+      #Scan package.json for vulnerable dependencies while developing
+      - ft-snyk-orb/scan-js-packages:
+          context: rel-eng-creds
+          requires:
+          - install
+          filters: *only_version_tags
       - release:
           context: rel-eng-creds
           requires:
@@ -83,4 +92,14 @@ workflows:
             <<: *only_version_tags
             branches:
               ignore: /.*/
+    #Scan and monitor vulnerabilities once in production
+      - ft-snyk-orb/scan-and-monitor-js-packages:
+          name: snyk-scan-and-monitor
+          context: rel-eng-creds
+          requires:
+            - release
+          filters:
+            <<: *only_version_tags
+            branches:
+              ignore: /.*/