Skip to content

Commit

Permalink
Create an initial security.yml file
Browse files Browse the repository at this point in the history
  • Loading branch information
jit-ci[bot] authored Nov 18, 2023
1 parent be4ae4b commit f0e68ed
Showing 1 changed file with 33 additions and 0 deletions.
33 changes: 33 additions & 0 deletions .github/workflows/jit-security.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,33 @@
name: Workflows generated by the MVS plan
'on':
workflow_dispatch:
inputs:
client_payload:
description: The Client payload
required: true

permissions:
contents: read
id-token: write

jobs:
enrich:
if: fromJSON(github.event.inputs.client_payload).payload.workflow_job_name == 'enrich'
runs-on: ubuntu-20.04
timeout-minutes: 20
steps:
- name: enrichment
uses: jitsecurity-controls/[email protected]
with:
security_control: registry.jit.io/control-enrichment-slim:latest

secret-detection:
if: fromJSON(github.event.inputs.client_payload).payload.workflow_job_name == 'secret-detection'
runs-on: ubuntu-20.04
timeout-minutes: 20
steps:
- name: gitleaks
uses: jitsecurity-controls/[email protected]
with:
security_control: registry.jit.io/control-gitleaks-alpine:latest
security_control_output_file: /tmp/report.json

0 comments on commit f0e68ed

Please sign in to comment.