changed the scan command to run on failures

Signed-off-by: fast-n-curious <[email protected]>

.github/workflows/nctl-scan-dockerfile.yaml

@@ -26,6 +26,6 @@ jobs:
         run: nctl version
 
       - name: NCTL Scan - Dockerfile
-        run: nctl scan dockerfile --policies controls/dockerfile-best-practices --resources config-files/dockerfile/Dockerfile
+        run: nctl scan dockerfile --policies controls/dockerfile-best-practices --resources config-files/dockerfile/Dockerfile --audit-as-warn
 
       - run: echo "🍏 This job's status is ${{ job.status }}."

.github/workflows/nctl-scan-k8s.yaml

@@ -26,9 +26,9 @@ jobs:
         run: nctl version
 
       - name: NCTL Scan - Kubernetes
-        run: nctl scan kubernetes --policies controls/pod-security --resources config-files/k8s 
+        run: nctl scan kubernetes --policies controls/pod-security --resources config-files/k8s --audit-as-warn
 
       - name: NCTL Scan - Kubernetes Detailed Report
-        run: nctl scan kubernetes --policies controls/pod-security --resources config-files/k8s --details 
+        run: nctl scan kubernetes --policies controls/pod-security --resources config-files/k8s --details --audit-as-warn
 
       - run: echo "🍏 This job's status is ${{ job.status }}."

.github/workflows/nctl-scan-terraform.yaml

@@ -36,6 +36,6 @@ jobs:
         # terraform show -json tfplan.binary | jq > payload.json
         run: |
           ./scripts/install-tf.sh
-          nctl scan terraform --policies controls/terraform-best-practices --resources config-files/terraform/ecs/payload.json
+          nctl scan terraform --policies controls/terraform-best-practices --resources config-files/terraform/ecs/payload.json --audit-as-warn
 
       - run: echo "🍏 This job's status is ${{ job.status }}."