From bd82adf4f54032be54a7ce157720e71a1464068e Mon Sep 17 00:00:00 2001
From: Simon Liu <simon.liu@jpl.nasa.gov>
Date: Tue, 21 Jan 2025 13:44:47 -0800
Subject: [PATCH] add snky step

---
 .github/workflows/build.yml | 23 ++++++++++++-----------
 1 file changed, 12 insertions(+), 11 deletions(-)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index f5eaf15..422e906 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -270,18 +270,19 @@ jobs:
       #         --severity-threshold=high
       #         --fail-on=all
 
-      # # This step will send the results of snyk to the snyk servers
-      # - name: Run Snyk on Python
-      #   uses: snyk/actions/python-3.8@master
-      #   env:
-      #     SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
-      #   with:
-      #     command: monitor
-      #     args: >
-      #       --org=${{ secrets.SNYK_ORG_ID }}
-      #       --project-name=${{ github.repository }}
+      - name: Run Snyk as a blocking step
+       uses: snyk/actions/gradle@master
+       env:
+           SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+           JAVA_HOME: /usr/lib/jvm/default-java/
+       with:
+         command: test
+         args:
+             --org=${{ secrets.SNYK_ORG_ID }}
+             --project-name=${{ github.repository }}
+             --severity-threshold=high
+             --fail-on=all
 
-      # Lastly run the tests bundled with the repo
       - name: Test and coverage
         run: |
           gradle wrapper --gradle-version 6.3