trivy #15
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: tfsec-and-trufflehog | |
| on: | |
| push: | |
| branches: | |
| - main | |
| pull_request: | |
| jobs: | |
| tfsec-and-trufflehog: | |
| name: tfsec-and-trufflehog | |
| runs-on: ubuntu-latest | |
| steps: | |
| ## Clone Repo ## | |
| - name: Clone repo | |
| uses: actions/checkout@master | |
| ## Check for Secrets and passwords ## | |
| - name: TruffleHog OSS | |
| uses: trufflesecurity/[email protected] | |
| ## Scan for tfsec misconfigurations ## | |
| - name: tfsec | |
| uses: aquasecurity/[email protected] | |
| ## Configure AWS Credentials ## | |
| - name: "Configure AWS Credentials" | |
| uses: aws-actions/[email protected] | |