-
Notifications
You must be signed in to change notification settings - Fork 2
29 lines (29 loc) · 944 Bytes
/
kubescape.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
name: Kubescape scanning for misconfigurations
on: [push, pull_request]
jobs:
kubescape:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
with:
fetch-depth: 0
- name: Get changed files
id: changed-files
uses: tj-actions/changed-files@v14.6
- uses: suhasgumma/github-action@main
with:
files: ${{ steps.changed-files.outputs.all_changed_files }}
suggestFix: true
- uses: peter-evans/create-pull-request@v4
with:
add-paths: |
*.yaml
*.yml
commit-message: Add Security
title: Auto Fixed by Kubescape.
body: |
Kubescape added some straightforward fixes to enhance security.
You may still need to add some fixes manually that are not conclusive.
base: ${{ github.head_ref }}
branch: kubescape-auto-fix-${{ github.head_ref || github.ref_name }}
delete-branch: true