From a965e5eb4625b4674fbc14c7d02c9f995ad0edb8 Mon Sep 17 00:00:00 2001
From: sirishgf <133086123+sirishgf@users.noreply.github.com>
Date: Fri, 29 Mar 2024 10:15:48 +0545
Subject: [PATCH] Update firebase-publish.yml with snyk integration

Add SNYK step for vulnerability checking
---
 .github/workflows/firebase-publish.yml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/.github/workflows/firebase-publish.yml b/.github/workflows/firebase-publish.yml
index 8178815..449f309 100644
--- a/.github/workflows/firebase-publish.yml
+++ b/.github/workflows/firebase-publish.yml
@@ -51,6 +51,12 @@ jobs:
         run: npx firebase-tools deploy --only functions --project ${{ vars.FIREBASE_PROJECT }} --debug
         env:
           GOOGLE_APPLICATION_CREDENTIALS: ${{ steps.auth.outputs.credentials_file_path }}
+
+      - name: Run Snyk to check for vulnerabilities
+        uses: snyk/actions/maven@master
+        continue-on-error: true
+        env:
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}