Skip to content

Commit

Permalink
Fixing scanner cli config
Browse files Browse the repository at this point in the history
  • Loading branch information
Juan Coto Sanchez committed Mar 12, 2024
1 parent 69c1c98 commit d6cf20c
Show file tree
Hide file tree
Showing 2 changed files with 10 additions and 9 deletions.
15 changes: 9 additions & 6 deletions .github/workflows/docker-image.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,14 @@ jobs:
type=ref,event=pr
type=semver,pattern={{version}}
type=semver,pattern={{major}}.{{minor}}
- name: Sysdig CLI scanner
run: |
chmod +x ./scripts/deploy_scan.sh
./scripts/deploy_scan.sh
env:
sysdig_api: ${{ secrets.SYSDIG_API }}
sysdig_api_url: ${{ env.SYSDIG_API_URL }}

- name: Build and push Docker image
uses: docker/build-push-action@v5
Expand All @@ -40,10 +48,5 @@ jobs:
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}

- name: Sysdig CLI scanner
run: |
chmod +x ./scripts/deploy_scan.sh
./scripts/deploy_scan.sh
env:
sysdig_api: ${{ secrets.SYSDIG_API }}


4 changes: 1 addition & 3 deletions scripts/deploy_scan.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,4 @@

curl -LO "https://download.sysdig.com/scanning/bin/sysdig-cli-scanner/$(curl -L -s https://download.sysdig.com/scanning/sysdig-cli-scanner/latest_version.txt)/linux/amd64/sysdig-cli-scanner"
chmod +x ./sysdig-cli-scanner
SECURE_API_TOKEN=$sysdig_api ./sysdig-cli-scanner --apiurl https://us2.app.sysdig.com koton00beng/prerender:main

cat /home/runner/work/lke_prerender/lke_prerender/scan-logs
SECURE_API_TOKEN=$sysdig_api ./sysdig-cli-scanner --apiurl $sysdig_api_url koton00beng/prerender:main --console-log --policy sysdig-best-practices

0 comments on commit d6cf20c

Please sign in to comment.