From 4610e25adc3844630ceb376eaaa29ee5bc5b4554 Mon Sep 17 00:00:00 2001
From: Prathamesh Chitodkar <pchitodkar@turo.com>
Date: Tue, 26 Sep 2023 21:38:12 +0000
Subject: [PATCH] feat: use latest semgrep image that runs as nonroot user to
 unpause checks

---
 static-analysis/action.yaml         | 2 --
 static-analysis/semgrep/action.yaml | 6 +-----
 2 files changed, 1 insertion(+), 7 deletions(-)

diff --git a/static-analysis/action.yaml b/static-analysis/action.yaml
index c560dfe..36bf693 100644
--- a/static-analysis/action.yaml
+++ b/static-analysis/action.yaml
@@ -18,5 +18,3 @@ runs:
       uses: ${GITHUB_ACTION_PATH}/static-analysis/semgrep
       with:
         semgrep-app-token: ${{ inputs.semgrep-app-token }}
-#    - run: echo "pausing checks"
-#      shell: bash
diff --git a/static-analysis/semgrep/action.yaml b/static-analysis/semgrep/action.yaml
index 4ee24c7..de14ba2 100644
--- a/static-analysis/semgrep/action.yaml
+++ b/static-analysis/semgrep/action.yaml
@@ -7,14 +7,10 @@ inputs:
 runs:
   using: docker
   container:
-    image: returntocorp/semgrep
+    image: returntocorp/semgrep:latest-nonroot
     options: --user semgrep
   args:
     - semgrep
     - ci
   env:
     SEMGREP_APP_TOKEN: ${{ inputs.semgrep-app-token }}
-#  using: composite
-#  steps:
-#    - run: echo "pausing checks"
-#      shell: bash