Skip to content

Add daily Snyk security scan workflow with Continue CLI agent #8263

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Oct 15, 2025
Merged

Add daily Snyk security scan workflow with Continue CLI agent #8263

merged 2 commits into from
Oct 15, 2025

Conversation

@sestinj
Copy link
Contributor

@sestinj sestinj commented Oct 15, 2025
edited by cubic-dev-ai bot
Loading

Summary by cubic

Adds a scheduled GitHub Actions workflow to run daily Snyk Code scans using the Continue CLI agent at 9:00 AM UTC. Supports manual runs via workflow_dispatch.

  • New Features

    • Runs continuedev/snyk-code-scan-agent against the extensions/cli directory.
    • Installs @continuedev/cli and uses Node.js 20.
    • Uses SNYK_TOKEN from repo secrets.

  • Migration

    • Add SNYK_TOKEN to repository secrets before merging.

@sestinj sestinj requested a review from a team as a code owner October 15, 2025 18:17
@sestinj sestinj requested review from RomneyDa and removed request for a team October 15, 2025 18:17
@github-actions
Copy link

github-actions bot commented Oct 15, 2025

⚠️ PR Title Format

Your PR title doesn't follow the conventional commit format, but this won't block your PR from being merged. We recommend using this format for better project organization.

Expected Format:

<type>[optional scope]: <description>

Examples:

  • feat: add changelog generation support
  • fix: resolve login redirect issue
  • docs: update README with new instructions
  • chore: update dependencies

Valid Types:

feat, fix, docs, style, refactor, perf, test, build, ci, chore, revert

This helps with:

  • 📝 Automatic changelog generation
  • 🚀 Automated semantic versioning
  • 📊 Better project history tracking

This is a non-blocking warning - your PR can still be merged without fixing this.

@sestinj sestinj merged commit 8442ad5 into main Oct 15, 2025
40 of 41 checks passed
@sestinj sestinj deleted the nate/add-daily-snyk-agent-workflow branch October 15, 2025 18:18
@github-project-automation github-project-automation bot moved this from Todo to Done in Issues and PRs Oct 15, 2025
@github-actions github-actions bot locked and limited conversation to collaborators Oct 15, 2025
@dosubot dosubot bot added the size:M This PR changes 30-99 lines, ignoring generated files. label Oct 15, 2025
cubic-dev-ai[bot]
cubic-dev-ai bot reviewed Oct 15, 2025
View reviewed changes
Copy link
Contributor

@cubic-dev-ai cubic-dev-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No issues found across 1 file

@sestinj
Copy link
Contributor Author

sestinj commented Oct 16, 2025

🎉 This PR is included in version 1.29.0 🎉

The release is available on:

Your semantic-release bot 📦🚀

@sestinj
Copy link
Contributor Author

sestinj commented Oct 17, 2025

🎉 This PR is included in version 1.26.0 🎉

The release is available on:

Your semantic-release bot 📦🚀

@sestinj
Copy link
Contributor Author

sestinj commented Oct 17, 2025

🎉 This PR is included in version 1.3.0 🎉

The release is available on:

Your semantic-release bot 📦🚀

@sestinj
Copy link
Contributor Author

sestinj commented Oct 21, 2025

🎉 This PR is included in version 1.5.0 🎉

The release is available on:

Your semantic-release bot 📦🚀

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@cubic-dev-ai cubic-dev-ai[bot] cubic-dev-ai[bot] left review comments

@RomneyDa RomneyDa Awaiting requested review from RomneyDa RomneyDa is a code owner automatically assigned from continuedev/continue-code-reviewers

Assignees

No one assigned

Labels

released size:M This PR changes 30-99 lines, ignoring generated files.

Projects

Issues and PRs
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@sestinj