name: Vulnerability check
on:
 push:
   branches:
     - master
 pull_request_target:

jobs:
 security:
   runs-on: ubuntu-latest
   steps:
   - name: Checkout source code
     uses: actions/checkout@master
   - name: Run Snyk to check for vulnerabilities
     uses: snyk/actions/node@master
     env:
       SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
     with:
       command: monitor --all-projects --exclude=examples,pom.xml