Update vulnerability scan command in workflow

The "scan composer.lock for vulnerabilities" step in the PHP workflow was updated. Before, the scan command wasn't recognised, leading to a process completion error. To fix this, the command has been updated to "osv-scanner scan --no-ignore composer.lock", ensuring proper functioning.
MarjovanLier · Feb 16, 2024 · 1cf72ca · 1cf72ca
1 parent ed01274
commit 1cf72ca
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/.github/workflows/php.yml b/.github/workflows/php.yml
@@ -60,7 +60,7 @@ jobs:
         run: go install github.com/google/osv-scanner/cmd/osv-scanner@v1
 
       - name: Scan composer.lock for vulnerabilities
-        run: scan --no-ignore composer.lock
+        run: osv-scanner scan --no-ignore composer.lock
 
       # This step checks for vulnerabilities in the project dependencies.
       - name: Check for vulnerabilities