Skip to content

[Analysis] TFSec

[Analysis] TFSec #1

name: "[Analysis] TFSec"
on:
push:
branches: [ main ]
paths:
- "**.tf"
schedule:
# 7am every wednesday
- cron: '0 7 * * 3'
permissions:
security-events: write
actions: read
checks: read
contents: none
deployments: none
issues: none
packages: none
repository-projects: none
statuses: none
jobs:
tfsec:
name: TFSec Static analysis
runs-on: ubuntu-latest
steps:
- name: Clone repo
uses: actions/checkout@v4
- name: Run tfsec
uses: tfsec/[email protected]
with:
sarif_file: tfsec.sarif
- name: Upload SARIF file
uses: github/codeql-action/[email protected]
with:
sarif_file: tfsec.sarif