Be sure to pass parameters along to follow on yml files

assembly-module-compliance.yml

@@ -21,10 +21,10 @@ parameters:
 steps:
 - template: template-compliance/apiscan.yml
   parameters:
-    softwareFolder: ''
-    softwareName: ''
-    softwareVersion: ''
-    APIScanEnable: ''
+    softwareFolder: ${{ parameters.softwareFolder }}
+    softwareName: ${{ parameters.softwareName }}
+    softwareVersion: ${{ parameters.softwareVersion }}
+    APIScanEnable: ${{ parameters.APIScan }}
 
 - template: template-compliance/auto-applicability.yml
 
@@ -39,14 +39,14 @@ steps:
 
 - template: template-compliance/credscan.yml
   parameters:
-    suppressionsFile: ''
+    suppressionsFile: ${{ parameters.suppressionsFile }}
 
 - template: template-compliance/defender.yml
 
 - template: template-compliance/TermCheck.yml
   parameters:
-    optionsRulesDBPath: ''
-    optionsFTPath: ''
+    optionsRulesDBPath: ${{ parameters.optionsRulesDBPath }}
+    optionsFTPath: ${{ parameters.optionsFTPath }}
 
 - template: template-compliance/vulnerability-assessment.yml
 

script-module-compliance.yml

@@ -20,26 +20,27 @@ steps:
 
 - template: template-compliance/credscan.yml
   parameters:
-    suppressionsFile: ''
+    suppressionsFile: ${{ parameters.suppressionsFile }}
 
 - template: template-compliance/defender.yml
 
 - template: template-compliance/TermCheck.yml
   parameters:
-    optionsRulesDBPath: ''
-    optionsFTPath: ''
+    optionsRulesDBPath: ${{ parameters.optionsRulesDBPath }}
+    optionsFTPath: ${{ parameters.optionsFTPath  }}
 
 - template: template-compliance/vulnerability-assessment.yml
 
 - template: template-compliance/publish-security-logs.yml
 
 - template: template-compliance/tsa-upload.yml
   parameters:
-    codeBaseName: ''
+    codeBaseName: ${{ parameters.codeBaseName }}
 
 - template: template-compliance/sdtreport.yml
   parameters:
     APIScan: ${{ parameters.APIScan }}
-    BinSkim: true
+    # script modules should not distribute binaries
+    BinSkim: false
     CredScan: true
     TermCheck: true