You're viewing an older version of this GitHub Action. Do you want to see the latest version instead?
GitHub Action
Run tfsec with sarif upload
v0.0.2
This Github Action will run the tfsec sarif check then add the report to the repo for upload.
Example usage
name: tfsec
on:
push:
branches:
- main
pull_request:
jobs:
tfsec:
name: tfsec sarif report
runs-on: ubuntu-latest
steps:
- name: Clone repo
uses: actions/checkout@master
- name: tfsec
uses: tfsec/tfsec-sarif-action@master
with:
github_token: ${{ secrets.github_token }}
branch: ${{ github.head_ref }}
- name: Upload SARIF file
uses: github/codeql-action/upload-sarif@v1
with:
# Path to SARIF file relative to the root of the repository
sarif_file: .sarif/tfsec.sarif