From 87673115dbc1c3b79f372854c12cb281147250d0 Mon Sep 17 00:00:00 2001
From: saisatishkarra <saisatish.karra@konghq.com>
Date: Mon, 18 Sep 2023 10:08:40 -0500
Subject: [PATCH] Set grype cpe auto add option

---
 security-actions/scan-docker-image/action.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/security-actions/scan-docker-image/action.yml b/security-actions/scan-docker-image/action.yml
index 086490b1..7aae0888 100644
--- a/security-actions/scan-docker-image/action.yml
+++ b/security-actions/scan-docker-image/action.yml
@@ -118,6 +118,7 @@ runs:
         sbom: ${{ steps.meta.outputs.sbom_spdx_file }}
         output-format: sarif
         fail-build: 'false'
+        add-cpes-if-none: true
         severity-cutoff: ${{ steps.meta.outputs.global_severity_cutoff }}
 
     # Don't fail during report generation
@@ -130,6 +131,7 @@ runs:
         sbom: ${{ steps.meta.outputs.sbom_spdx_file }}
         output-format: json
         fail-build: 'false'
+        add-cpes-if-none: true
         severity-cutoff: ${{ steps.meta.outputs.global_severity_cutoff }}
 
     - name: Check vulnerability analysis report existence
@@ -199,6 +201,7 @@ runs:
         sbom: ${{ steps.meta.outputs.sbom_spdx_file }}
         output-format: table
         fail-build: ${{ steps.meta.outputs.global_enforce_build_failure == 'true' && steps.meta.outputs.global_enforce_build_failure || inputs.fail_build }}
+        add-cpes-if-none: true
         severity-cutoff: ${{ steps.meta.outputs.global_severity_cutoff }}
 
     - name: Inspect docker-cis report