Merge pull request #2 from Checkmarx/master

Upgrading KICS to version 1.7 for fun and profit
auto1-oss · Oct 12, 2023 · da5a083 · da5a083
2 parents 75980f3 + 6d02dc9
commit da5a083
Show file tree

Hide file tree

Showing 2 changed files with 15 additions and 15 deletions.
diff --git a/Dockerfile b/Dockerfile
@@ -1,4 +1,4 @@
-FROM checkmarx/kics:gh-action-kics1.6
+FROM checkmarx/kics:gh-action-kics1.7
 
 COPY ./entrypoint.sh /entrypoint.sh
 

diff --git a/README.md b/README.md
@@ -73,7 +73,7 @@ And ensure that you're using the <a href="https://github.com/Checkmarx/kics-gith
 
 | Variable | Example Value &nbsp; | Description &nbsp; | Type | Required | Default |
 |-------------------------------------------|--------------------------------------------------------|-------------------------------------------------------------------------------------------------------------------------------------------------------------|---------| -------- |--------------------------------------------------------|
-| enable_comment | true | Enable pull request report comments | Boolean | No | false |
+| enable_comments | true | Enable pull request report comments | Boolean | No | false |
 | enable_jobs_summary | true | Enable report as jobs summary | Boolean | No | false |
 | enable_annotations | true | Enable annotations report | Boolean | No | true |
 | comments_with_queries | true | Add queries in th pull request report comments (available when enable_comments = true) | Boolean | No | false |
@@ -115,7 +115,7 @@ And ensure that you're using the <a href="https://github.com/Checkmarx/kics-gith
  - uses: actions/checkout@v3
  # Scan Iac with kics
  - name: run kics Scan
- uses: checkmarx/kics-github-action@v1.6
+ uses: checkmarx/kics-github-action@v1.7.0
  with:
  # scanning two directories: ./terraform/ ./cfn-templates/ plus a single file
  path: 'terraform,cfn-templates,my-other-sub-folder/Dockerfile'
@@ -138,7 +138,7 @@ If you want KICS to ignore the results and return exit status code 0 unless a KI
  steps:
  - uses: actions/checkout@v3
  - name: run kics Scan
- uses: checkmarx/kics-github-action@v1.6
+ uses: checkmarx/kics-github-action@v1.7.0
  with:
  path: 'terraform'
  ignore_on_exit: results
@@ -156,7 +156,7 @@ If want your pipeline just to fail on HIGH and MEDIUM severity results and KICS
  steps:
  - uses: actions/checkout@v3
  - name: run kics Scan
- uses: checkmarx/kics-github-action@v1.6
+ uses: checkmarx/kics-github-action@v1.7.0
  with:
  path: 'terraform,my-other-sub-folder/Dockerfile'
  fail_on: high,medium
@@ -182,13 +182,13 @@ jobs:
  steps:
  - uses: actions/checkout@v3
  - name: run kics Scan
- uses: checkmarx/kics-github-action@v1.6
-  with:
-  path: test/samples/positive1.tf,test/samples/positive2.tf
-  token: ${{ secrets.GITHUB_TOKEN }}
-  output_path: myResults/
-  ignore_on_exit: results
-  enable_comments: true
+ uses: checkmarx/kics-github-action@v1.7.0
+ with:
+ path: test/samples/positive1.tf,test/samples/positive2.tf
+ token: ${{ secrets.GITHUB_TOKEN }}
+ output_path: myResults/
+ ignore_on_exit: results
+ enable_comments: true
 ```
 
 ### PR Comment Example
@@ -241,7 +241,7 @@ You can only enable one profiler at a time, CPU or MEM.
  steps:
  - uses: actions/checkout@v3
  - name: run kics Scan
- uses: checkmarx/kics-github-action@v1.6
+ uses: checkmarx/kics-github-action@v1.7.0
  with:
  path: 'terraform'
  profiling: MEM
@@ -272,7 +272,7 @@ jobs:
  # make sure results dir is created
  run: mkdir -p results-dir
  - name: Run KICS Scan with SARIF result
- uses: checkmarx/kics-github-action@v1.6
+ uses: checkmarx/kics-github-action@v1.7.0
  with:
  path: 'terraform'
  # when provided with a directory on output_path
@@ -337,7 +337,7 @@ jobs:
  }
  EOF
  - name: Run KICS Scan using config
- uses: checkmarx/kics-github-action@v1.6
+ uses: checkmarx/kics-github-action@v1.7.0
  with:
  path: 'terraform'
  config_path: ./kics.config