Skip to content

Bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0.13 to 3.0.14 #528

Bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0.13 to 3.0.14

Bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0.13 to 3.0.14 #528

Workflow file for this run

name: checkov
on:
push:
branches:
- main
pull_request:
branches:
- main
jobs:
scan:
permissions:
contents: read
security-events: write
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
- name: Run checkov
uses: bridgecrewio/checkov-action@d0e41abbcc8c1103c6ae7e451681d071f05e1c20 # v12.2873.0
with:
config_file: .checkov.yml
output_format: cli,sarif
output_file_path: console,results.sarif
skip_download: true # Do not download any data from Bridgecrew's servers
- name: Upload SARIF file
uses: github/codeql-action/upload-sarif@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
if: success() || failure()
with:
sarif_file: results.sarif