Skip to content

Merge pull request #5 from debenstack/dev #14

Merge pull request #5 from debenstack/dev

Merge pull request #5 from debenstack/dev #14

name: checkov-check-terraform
# Only trigger, when the build workflow succeeded
on:
push:
branches: [ main ]
pull_request:
branches: [ main ]
permissions: read-all
jobs:
checkov-checks:
runs-on: ubuntu-latest
steps:
# Checkout Repository
- name : Check out Git Repository
uses: actions/checkout@v2
# Checkov - Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code
- name: Run Checkov
run: |
docker run -t -v ${{ github.workspace }}:/tf --workdir /tf bridgecrew/checkov --directory /tf --skip-check CKV2_GHA_1