Skip to content
Aqua

Merge pull request #6 from tejademo-scs/aqua-push_test #5

Sign in to view logs

Merge pull request #6 from tejademo-scs/aqua-push_test

Merge pull request #6 from tejademo-scs/aqua-push_test #5

Workflow file for this run

.github/workflows/aqua-push.yml at 3825888
name: Aqua
on:
push:
branches:
- main
- aqua-push_test
jobs:
aqua:
name: Aqua scanner
runs-on: ubuntu-latest
permissions:
contents: write
pull-requests: write
packages: write
steps:
- name: Checkout code
uses: actions/checkout@v2
- name: Run Aqua scanner
uses: docker://aquasec/aqua-scanner
with:
args: trivy fs --scanners misconfig,vuln,secret --sast .
env:
AQUA_KEY: ${{ secrets.AQUA_KEY }}
AQUA_SECRET: ${{ secrets.AQUA_SECRET }}
GITHUB_TOKEN: ${{ secrets.TOKEN }}
TRIVY_RUN_AS_PLUGIN: 'aqua'
ACTIONS_RUNTIME_TOKEN: ${{ secrets.TOKEN }}
TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2