diff --git a/.github/workflows/tfsec.yml b/.github/workflows/tfsec.yml index bb68ca0..32a9446 100644 --- a/.github/workflows/tfsec.yml +++ b/.github/workflows/tfsec.yml @@ -1,35 +1,18 @@ -# This workflow uses actions that are not certified by GitHub. -# They are provided by a third-party and are governed by -# separate terms of service, privacy policy, and support -# documentation. - name: tfsec - on: push: - branches: [ "main" ] + branches: + - main pull_request: - branches: [ "main" ] - schedule: - - cron: '26 16 * * 5' - jobs: tfsec: - name: Run tfsec sarif report + name: tfsec runs-on: ubuntu-latest - permissions: - actions: read - contents: read - security-events: write steps: - name: Clone repo - uses: actions/checkout@v4 - - - name: Run tfsec - uses: aquasecurity/tfsec-sarif-action@21ded20e8ca120cd9d3d6ab04ef746477542a608 + uses: actions/checkout@master + - name: tfsec + uses: aquasecurity/tfsec-action@v1.0.0 with: - sarif_file: tfsec.sarif - - - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@v3 \ No newline at end of file + soft_fail: true