Set example workflows to main branch for testing

Michael Long · Michael Long · commit cdcff85377bb · 2024-08-30T15:37:46.000-04:00
diff --git a/.github/workflows/build_scan_container.yml b/.github/workflows/build_scan_container.yml
@@ -47,7 +47,7 @@ jobs:
           role-to-assume: ${{ secrets.AWS_IAM_ROLE }}
 
       - name: Scan built image with Inspector
-        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@v1.1.3
+        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@main
         id: inspector
         with:
           artifact_type: 'container'
diff --git a/.github/workflows/example_display_findings.yml b/.github/workflows/example_display_findings.yml
@@ -29,7 +29,7 @@ jobs:
       # modify this block to scan your intended artifact
       - name: Inspector Scan
         id: inspector
-        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@v1.1.3
+        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@main
         with:
           # change artifact_type to either 'repository', 'container', 'binary', or 'archive'.
           # this example scans a container image
diff --git a/.github/workflows/test_archive.yml b/.github/workflows/test_archive.yml
@@ -32,7 +32,7 @@ jobs:
 
       - name: Test archive scan
         id: inspector
-        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@v1.1.3
+        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@main
         with:
           artifact_type: 'archive'
           artifact_path: 'entrypoint/tests/test_data/artifacts/archives/testData.zip'
diff --git a/.github/workflows/test_binary.yml b/.github/workflows/test_binary.yml
@@ -32,7 +32,7 @@ jobs:
 
       - name: Test binary scan
         id: inspector
-        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@v1.1.3
+        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@main
         with:
           artifact_type: 'binary'
           artifact_path: 'entrypoint/tests/test_data/artifacts/binaries/inspector-sbomgen'
diff --git a/.github/workflows/test_containers.yml b/.github/workflows/test_containers.yml
@@ -32,12 +32,12 @@ jobs:
 
       - name: Test container scan
         id: inspector
-        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@v1.1.3
+        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@main
         with:
           artifact_type: 'container'
           artifact_path: 'ubuntu:14.04'
           display_vulnerability_findings: "enabled"
-          sbomgen_version: "1.3.1"
+          sbomgen_version: "latest"
 
       - name: Display scan results
         run: cat ${{ steps.inspector.outputs.inspector_scan_results }}
diff --git a/.github/workflows/test_dockerfile_vulns.yml b/.github/workflows/test_dockerfile_vulns.yml
@@ -31,7 +31,7 @@ jobs:
 
       - name: Scan Dockerfiles
         id: inspector
-        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@v1.1.3
+        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@main
         with:
           artifact_type: 'repository'
           artifact_path: './'
diff --git a/.github/workflows/test_installation.yml b/.github/workflows/test_installation.yml
@@ -28,7 +28,7 @@ jobs:
           role-to-assume: ${{ secrets.AWS_IAM_ROLE }}
 
       - name: Test Amazon Inspector GitHub Actions plugin
-        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@v1.1.3
+        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@main
         with:
           artifact_type: 'container'
           artifact_path: 'alpine:latest'
diff --git a/.github/workflows/test_no_vulns.yml b/.github/workflows/test_no_vulns.yml
@@ -28,7 +28,7 @@ jobs:
 
       - name: Test binary scan
         id: inspector
-        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@v1.1.3
+        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@main
         with:
           artifact_type: 'binary'
           artifact_path: 'entrypoint/tests/test_data/artifacts/binaries/test_go_binary'
diff --git a/.github/workflows/test_reports_no_vulns.yml b/.github/workflows/test_reports_no_vulns.yml
@@ -35,3 +35,18 @@ jobs:
 
       - name: Display scan results
         run: cat ${{ steps.inspector.outputs.inspector_scan_results_csv }}
+        
+      - name: Display scan results (JSON)
+        run: cat ${{ steps.inspector.outputs.inspector_scan_results }}
+
+      - name: Display package vulns (CSV)
+        run: cat ${{ steps.inspector.outputs.inspector_scan_results_csv }}
+
+      - name: Display package vulns (MD)
+        run: cat ${{ steps.inspector.outputs.inspector_scan_results_markdown }}
+
+      - name: Display Dockerfile vulns (CSV)
+        run: cat ${{ steps.inspector.outputs.inspector_dockerfile_scan_results_csv }}
+
+      - name: Display Dockerfile vulns (MD)
+        run: cat ${{ steps.inspector.outputs.inspector_dockerfile_scan_results_markdown }}
diff --git a/.github/workflows/test_repository.yml b/.github/workflows/test_repository.yml
@@ -31,7 +31,7 @@ jobs:
 
       - name: Test repository scan
         id: inspector
-        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@v1.1.3
+        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@main
         with:
           artifact_type: 'repository'
           artifact_path: './'
diff --git a/.github/workflows/test_vuln_thresholds.yml b/.github/workflows/test_vuln_thresholds.yml
@@ -30,7 +30,7 @@ jobs:
           role-to-assume: ${{ secrets.AWS_IAM_ROLE }}
 
       - name: Scan artifact with Inspector
-        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@v1.1.3
+        uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@main
         id: inspector
         with:
           artifact_type: 'archive'
