Skip to content

fix action version from v1.0.2 to 1.0.2 #18

fix action version from v1.0.2 to 1.0.2

fix action version from v1.0.2 to 1.0.2 #18

# This is a basic workflow to help you get started with Actions
name: s3ctf-template-scanner-pipeline
# Controls when the workflow will run and the branched
on:
push:
branches:
- master
- main
# A workflow run is made up of one or more jobs that can run sequentially or in parallel
jobs:
# This workflow contains a single job called "CloudFormation-Scan"
CloudFormation-Scan:
# The type of runner that the job will run on
runs-on: ubuntu-latest
# Steps represent a sequence of tasks that will be executed as part of the job
steps:
# Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
- name: Checkout
uses: actions/checkout@v2
# Runs the Conformity Template Scanner and block the buid process if the results exceed the parameters set below
- name: Cloud Posture Conformity Pipeline Scanner
uses: igorschultz/cloud-posture-template-scanner-pipeline@1.0.2
env:
v1_apikey: ${{ secrets.apikey }}
maxExtreme: 0
maxVeryHigh: 1
maxHigh: 3
maxMedium: 5
maxLow: 5
templatePath: s3-bucket-sfcb.yml
- name: Configure AWS Credentials
uses: aws-actions/configure-aws-credentials@v1
with:
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
# aws-session-token: ${{ secrets.AWS_SESSION_TOKEN }} # if you have/need it
aws-region: us-west-2
- name: Deploy to AWS CloudFormation Deploy CloudFormation Stack Action for GitHub Actions
uses: aws-actions/aws-cloudformation-github-deploy@v1.0.3
with:
name: s3-ctf-securityForCloudBuilders
template: s3-bucket-sfcb.yml
no-fail-on-empty-changeset: "1"