Skip to content

Bump github/codeql-action from 3.24.3 to 3.25.4 #80

Bump github/codeql-action from 3.24.3 to 3.25.4

Bump github/codeql-action from 3.24.3 to 3.25.4 #80

Workflow file for this run

---
name: Terrascan scan
on:
workflow_dispatch:
# push:
pull_request:
jobs:
terrascan_job:
runs-on: ubuntu-22.04
name: terrascan-action
permissions: write-all
steps:
- uses: actions/checkout@v4
- name: Terrascan IaC scanner
id: terrascan
uses: tenable/terrascan-action@v1.5.0
with:
iac_type: terraform
iac_version: v14
policy_type: aws
only_warn: true
sarif_upload: true
# webhook_url: ${{ secrets.SLACK_WEBHOOK_PROD }}
find_vulnerabilities: true
#non_recursive:
#iac_dir:
#policy_path:
#skip_rules:
#config_path:
- name: Upload SARIF file
uses: github/codeql-action/upload-sarif@v3.25.4
with:
sarif_file: terrascan.sarif
category: terrascan