-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathaction.yml
36 lines (34 loc) · 970 Bytes
/
action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
name: "Scan Container Images On Push to ECR"
description: "Scans for container image vulnerabilities when an image is pushed to ECR"
inputs:
ecr_repository:
description: "Name of the ECR repository"
required: true
image_tag:
description: "ECR Image tag"
required: true
pr_comment:
description: "Whether to comment the result on PR"
required: true
github_token:
description: "Github token for updating PR"
required: false
url:
description: "URL for calling POST request for updating PR"
required: false
aws_region:
description: "AWS region"
required: true
runs:
using: "docker"
image: "Dockerfile"
args:
- ${{ inputs.ecr_repository }}
- ${{ inputs.image_tag }}
- ${{ inputs.pr_comment }}
- ${{ inputs.github_token }}
- ${{ inputs.url }}
- ${{ inputs.aws_region }}
outputs:
VULNERABILITY:
description: 'If vulnerabilities are detected or not'