fortify · dylanbthomas · Nov 21, 2024 · Sep 27, 2024 · Sep 27, 2024 · Sep 27, 2024
diff --git a/.github/workflows/fortify.yml b/.github/workflows/fortify.yml
@@ -27,7 +27,8 @@ jobs:
       actions: read
       contents: read
       security-events: write
-
+      pull-requests: write
+
     steps:
       # Check out source code
       - name: Check Out Source Code
@@ -45,11 +46,15 @@ jobs:
         uses: fortify/github-action@v1
         with:
           sast-scan: true
+          debricked-sca-scan: true
         env:
           FOD_URL: https://ams.fortify.com
           FOD_TENANT: ${{secrets.FOD_TENANT}}
           FOD_USER: ${{secrets.FOD_USER}}
           FOD_PASSWORD: ${{secrets.FOD_PAT}}
-          FOD_RELEASE: ${{ secrets.FOD_RELEASE_ID }}
-          EXTRA_PACKAGE_OPTS: -oss
           DO_EXPORT: true
+          DO_SETUP: true
+          SETUP_EXTRA_OPTS: --copy-from "${{ github.repository }}:${{ github.event.repository.default_branch }}"
+          DO_JOB_SUMMARY: true
+          DO_PR_COMMENT: true
+          #DO_POLICY_CHECK: true