File tree Expand file tree Collapse file tree 1 file changed +37
-0
lines changed Expand file tree Collapse file tree 1 file changed +37
-0
lines changed Original file line number Diff line number Diff line change 1+ # This workflow uses actions that are not certified by GitHub.
2+ # They are provided by a third-party and are governed by
3+ # separate terms of service, privacy policy, and support
4+ # documentation.
5+
6+ name : tfsec
7+
8+ on :
9+ push :
10+ branches : [ "main" ]
11+ pull_request :
12+ branches : [ "main" ]
13+
14+ jobs :
15+ tfsec :
16+ name : Run tfsec sarif report
17+ runs-on : ubuntu-latest
18+ permissions :
19+ actions : read
20+ contents : read
21+ security-events : write
22+
23+ steps :
24+ - name : Clone repo
25+ uses : actions/checkout@v3
26+
27+ - name : Run tfsec
28+ uses : aquasecurity/tfsec-sarif-action@5d34a982aa8927c5dd8566d25ef248d526aac1f4
29+ with :
30+ working_directory : terraform
31+ sarif_file : tfsec.sarif
32+
33+ - name : Upload SARIF file
34+ uses : github/codeql-action/upload-sarif@v2
35+ with :
36+ # Path to SARIF file relative to the root of the repository
37+ sarif_file : tfsec.sarif
You can’t perform that action at this time.
0 commit comments