Fortify AST Action Updates (#52)

* Update fortify.yml with Fortify AST action v1.3 * Update fortify.yml Specify latest minor version of Fortify action * Update fortify.yml Add setup option for SDLC status * Update fortify.yml Add Policy Check * Update fortify.yml Additional action configuration * Update fortify.yml * Update fortify.yml * Update fortify.yml * Update fortify.yml * Update fortify.yml * Update fortify.yml * Update fortify.yml * Update fortify.yml * Update fortify.yml Test w/o copy state * Update fortify.yml
fortify · Nov 21, 2024 · 6716d72 · 6716d72
1 parent b180fa2
commit 6716d72
Showing 1 changed file with 8 additions and 3 deletions.
diff --git a/.github/workflows/fortify.yml b/.github/workflows/fortify.yml
@@ -27,7 +27,8 @@ jobs:
       actions: read
       contents: read
       security-events: write
-
+      pull-requests: write
+
     steps:
       # Check out source code
       - name: Check Out Source Code
@@ -45,11 +46,15 @@ jobs:
         uses: fortify/github-action@v1
         with:
           sast-scan: true
+          debricked-sca-scan: true
         env:
           FOD_URL: https://ams.fortify.com
           FOD_TENANT: ${{secrets.FOD_TENANT}}
           FOD_USER: ${{secrets.FOD_USER}}
           FOD_PASSWORD: ${{secrets.FOD_PAT}}
-          FOD_RELEASE: ${{ secrets.FOD_RELEASE_ID }}
-          EXTRA_PACKAGE_OPTS: -oss
           DO_EXPORT: true
+          DO_SETUP: true
+          SETUP_EXTRA_OPTS: --copy-from "${{ github.repository }}:${{ github.event.repository.default_branch }}"
+          DO_JOB_SUMMARY: true
+          DO_PR_COMMENT: true
+          #DO_POLICY_CHECK: true