From e405a891e9b3db98785089d84099841b7f27f1e7 Mon Sep 17 00:00:00 2001 From: Igor Schultz Date: Wed, 29 May 2024 11:42:29 -0300 Subject: [PATCH] update scanner action to new cloud posture --- .github/workflows/template-scanner-cft.yml | 7 +++---- .gitignore | 1 + s3-bucket-sfcb.yml | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) create mode 100644 .gitignore diff --git a/.github/workflows/template-scanner-cft.yml b/.github/workflows/template-scanner-cft.yml index 7122cc5..df8d1b4 100644 --- a/.github/workflows/template-scanner-cft.yml +++ b/.github/workflows/template-scanner-cft.yml @@ -23,16 +23,15 @@ jobs: uses: actions/checkout@v2 # Runs the Conformity Template Scanner and block the buid process if the results exceed the parameters set below - - name: Cloud One Conformity Pipeline Scanner - uses: raphabot/conformity-template-scanner-pipeline@v1.0.0 + - name: Cloud Posture Conformity Pipeline Scanner + uses: igorschultz/cloud-posture-template-scanner-pipeline@v1.0.0 env: - cc_apikey: ${{ secrets.apikey }} + v1_apikey: ${{ secrets.apikey }} maxExtreme: 0 maxVeryHigh: 1 maxHigh: 3 maxMedium: 15 maxLow: 15 - cc_region: us-west-2 templatePath: s3-bucket-sfcb.yml - name: Configure AWS Credentials diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..af6b56a --- /dev/null +++ b/.gitignore @@ -0,0 +1 @@ +.dccache \ No newline at end of file diff --git a/s3-bucket-sfcb.yml b/s3-bucket-sfcb.yml index c7197d9..f93ef10 100644 --- a/s3-bucket-sfcb.yml +++ b/s3-bucket-sfcb.yml @@ -5,4 +5,4 @@ Resources: Properties: BucketName: sfcb-ctf-bucket-us-west-2 VersioningConfiguration: - Status: Enabled \ No newline at end of file + Status: Suspended \ No newline at end of file