Pipeline scanner uses Cloud Conformity's Template Scanner to secure your CloudFormation templates before they're deployed.

• Have an Cloud One Conformity account. Sign up for free trial now if it's not already the case!
• A cloud formation template to be scan.

To use the script, specify the following required environment variables:

• cc_apikey
• cc_region
• template
• acceptedQty (default: 0)

PS.: ALWAYS use secrets to expose your credentials!

Add an Action in your .github/workflow yml file to scan your cloud formation template with Cloud One Conformity.

name: My CI/CD Pipeline

on: 
  push:
    branches: 
      - master
      
jobs:      
    CloudFormation-Scan:
       runs-on: ubuntu-latest
       steps:
          - name: Cloud One Conformity Pipeline Scanner
            uses: raphabot/conformity-template-scanner-pipeline@v15
            env:
              cc_apikey: ${{ secrets.apikey }}
              acceptedQty: 10
              cc_region: us-west-2
              template: template.yaml

Official support from Trend Micro is not available. Individual contributors may be Trend Micro employees, but are not official support.