From 3c6049f935f434dcc06cd5244939be495d71c684 Mon Sep 17 00:00:00 2001 From: jasquat Date: Wed, 14 Aug 2024 16:26:26 -0400 Subject: [PATCH] added github action to test scan action w/ burnettk --- .github/workflows/test.yml | 34 +++++++++++++++++++++ wait-for-ecr-scan-and-get-sarif/actions.yml | 2 +- 2 files changed, 35 insertions(+), 1 deletion(-) create mode 100644 .github/workflows/test.yml diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml new file mode 100644 index 0000000..2ac8d22 --- /dev/null +++ b/.github/workflows/test.yml @@ -0,0 +1,34 @@ +name: "ECR Scan and Retrieve SARIF Report" + +on: + push: + branches: + - main + workflow_dispatch: + +jobs: + ecr-scan: + runs-on: ubuntu-latest + + steps: + - name: Checkout repository + uses: actions/checkout@v2 + + - name: Run ECR Scan and Get SARIF Report + uses: sartography/github-actions-library/wait-for-ecr-scan-and-get-sarif@main + with: + repository_name: "my-ecr-repository" + image_tag: "latest" + aws_region: "us-west-2" + output_file: "report.sarif" + + - name: Upload SARIF report as artifact + uses: actions/upload-artifact@v3 + with: + name: sarif-report + path: report.sarif + + # - name: Upload SARIF report to GitHub Code Scanning + # uses: github/codeql-action/upload-sarif@v2 + # with: + # sarif_file: report.sarif diff --git a/wait-for-ecr-scan-and-get-sarif/actions.yml b/wait-for-ecr-scan-and-get-sarif/actions.yml index fa10ce0..4ddad10 100644 --- a/wait-for-ecr-scan-and-get-sarif/actions.yml +++ b/wait-for-ecr-scan-and-get-sarif/actions.yml @@ -23,7 +23,7 @@ outputs: runs: using: "docker" - image: "python:3.9" + image: "python:3.12" args: - "python" - "/wait-for-ecr-scan-and-get-sarif/main.py"