Skip to content

Commit

Permalink
formatted description
Browse files Browse the repository at this point in the history
  • Loading branch information
Sanyam Vikram committed Feb 26, 2024
1 parent 3934ae7 commit 94b1ec2
Show file tree
Hide file tree
Showing 6 changed files with 63 additions and 34 deletions.
3 changes: 3 additions & 0 deletions .idea/.gitignore
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

9 changes: 9 additions & 0 deletions .idea/analyze-code-security-scc.iml
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

6 changes: 6 additions & 0 deletions .idea/misc.xml
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

8 changes: 8 additions & 0 deletions .idea/modules.xml
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

6 changes: 6 additions & 0 deletions .idea/vcs.xml
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

65 changes: 31 additions & 34 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,40 +45,37 @@ support](https://cloud.google.com/support).**

```yaml
jobs:
job_id:
permissions:
contents: 'read'
id-token: 'write'


steps:
- uses: 'actions/checkout@v4'
- id: 'auth'
uses: 'google-github-actions/auth@v2'
with:
workload_identity_provider: 'projects/123456789/locations/global/workloadIdentityPools/my-pool/providers/my-provider'
service_account: 'my-service-account@my-project.iam.gserviceaccount.com'


- id: 'analyze-code-security-scc'
uses: 'google-github-actions/analyze-code-security-scc@v0'
with:
organization_id: '123456789'
scan_file_ref: './tf_plan.json'
iac_type: 'terraform'
iac_version: '1.0.0'
scan_timeout: '1m'
ignore_violations: false
failure_criteria: 'High:1,Medium:1,Low:1,Operator:or'
fail_silently: false


- if: |-
steps.analyze-code-security-scc.outputs.iac_scan_result_sarif_path != ''
uses: 'actions/upload-artifact@v4'
with:
name: 'sarif'
path: '${{ steps.analyze-code-security-scc.outputs.iac_scan_result_sarif_path }}'
job_id:
permissions:
contents: 'read'
id-token: 'write'

steps:
- uses: 'actions/checkout@v4'
- id: 'auth'
uses: 'google-github-actions/auth@v2'
with:
workload_identity_provider: 'projects/123456789/locations/global/workloadIdentityPools/my-pool/providers/my-provider'
service_account: 'my-service-account@my-project.iam.gserviceaccount.com'

- id: 'analyze-code-security-scc'
uses: 'google-github-actions/analyze-code-security-scc@v0'
with:
organization_id: '123456789'
scan_file_ref: './tf_plan.json'
iac_type: 'terraform'
iac_version: '1.0.0'
scan_timeout: '1m'
ignore_violations: false
failure_criteria: 'High:1,Medium:1,Low:1,Operator:or'
fail_silently: false

- if: |-
steps.analyze-code-security-scc.outputs.iac_scan_result_sarif_path != ''
uses: 'actions/upload-artifact@v4'
with:
name: 'sarif'
path: '${{ steps.analyze-code-security-scc.outputs.iac_scan_result_sarif_path }}'
```
Expand Down

0 comments on commit 94b1ec2

Please sign in to comment.