Skip to content

Merge pull request #535 from kubescape/bump #1400

Merge pull request #535 from kubescape/bump

Merge pull request #535 from kubescape/bump #1400

Workflow file for this run

name: Kubescape scanning for misconfigurations
on:
push:
paths:
- 'charts/**.yaml'
- 'charts/**.tpl'
jobs:
kubescape:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- uses: kubescape/github-action@main
continue-on-error: true
with:
frameworks: "allcontrols,workloadscan"
format: sarif
outputFile: results.sarif
severityThreshold: critical
account: ${{secrets.KUBESCAPE_ACCOUNT }}
accessKey: ${{secrets.KUBESCAPE_ACCESS_KEY }}
- name: Upload Kubescape scan results to Github Code Scanning
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: results.sarif