Sync with plan

cepix1234 · Aug 9, 2023 · 3da0fca · 3da0fca
1 parent 7c2cffd
commit 3da0fca
Showing 1 changed file with 0 additions and 66 deletions.
diff --git a/.github/workflows/jit-security.yml b/.github/workflows/jit-security.yml
@@ -19,10 +19,7 @@ jobs:
     - name: trivy
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-trivy-alpine:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -34,10 +31,7 @@ jobs:
     - name: enrichment
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-enrichment-slim:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -49,11 +43,8 @@ jobs:
     - name: kics
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-kics-alpine:latest
         security_control_output_file: /code/jit-report/results.json
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -65,11 +56,8 @@ jobs:
     - name: kubescape
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-kubescape-slim:latest
         security_control_output_file: /code/results.json
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -81,11 +69,8 @@ jobs:
     - name: kics
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-kics-alpine:latest
         security_control_output_file: /code/jit-report/results.json
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -97,11 +82,8 @@ jobs:
     - name: kics
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-kics-alpine:latest
         security_control_output_file: /code/jit-report/results.json
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -113,11 +95,8 @@ jobs:
     - name: remediation-pr
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/open-remediation-pr-alpine:latest
         security_control_output_file: /opt/code/jit-report/results.json
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
         inline_environment: -e GITHUB_TOKEN="${{fromJSON(github.event.inputs.client_payload).payload.github_token}}"
@@ -130,11 +109,8 @@ jobs:
     - name: gitleaks
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-gitleaks-alpine:latest
         security_control_output_file: /tmp/report.json
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -146,10 +122,7 @@ jobs:
     - name: nancy
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-nancy-alpine:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -161,11 +134,8 @@ jobs:
     - name: npm-audit
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-npm-audit-slim:latest
         security_control_output_file: /code/jit-report/enriched-audit-results.json
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -177,11 +147,8 @@ jobs:
     - name: osv-scanner
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-osv-scanner-alpine:latest
         security_control_output_file: /code/jit-report/osv-scanner-results.json
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -193,11 +160,8 @@ jobs:
     - name: osv-scanner
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-osv-scanner-alpine:latest
         security_control_output_file: /code/jit-report/enriched-osv-scanner-results.json
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -209,10 +173,7 @@ jobs:
     - name: semgrep
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-semgrep-alpine:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -224,10 +185,7 @@ jobs:
     - name: gosec
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-gosec-alpine:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -239,10 +197,7 @@ jobs:
     - name: semgrep
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-semgrep-alpine:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -254,10 +209,7 @@ jobs:
     - name: semgrep
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-semgrep-alpine:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -269,10 +221,7 @@ jobs:
     - name: semgrep
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-semgrep-alpine:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -284,10 +233,7 @@ jobs:
     - name: semgrep
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-semgrep-alpine:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -299,10 +245,7 @@ jobs:
     - name: semgrep
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-semgrep-alpine:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -314,10 +257,7 @@ jobs:
     - name: semgrep
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-semgrep-alpine:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -329,10 +269,7 @@ jobs:
     - name: semgrep
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-semgrep-alpine:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
@@ -344,10 +281,7 @@ jobs:
     - name: semgrep
       uses: jitsecurity-controls/jit-github-action@v3.0.1
       with:
-        docker_user: jit-bot
-        docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
         security_control: registry.jit.io/control-semgrep-alpine:latest
-        dispatch_type: workflow
         context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
         runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}