Skip to content

Workflows generated by the MVS plan #3

Workflows generated by the MVS plan

Workflows generated by the MVS plan #3

Workflow file for this run

name: Workflows generated by the MVS plan
on:
workflow_dispatch:
inputs:
client_payload:
description: The Client payload
required: true
permissions:
contents: read
id-token: write
jobs:
enrich:
if: fromJSON(github.event.inputs.client_payload).payload.workflow_job_name == 'enrich' && fromJSON(github.event.inputs.client_payload).payload.workflow_slug == 'workflow-enrichment-code'
runs-on: ubuntu-20.04
timeout-minutes: 20
steps:
- name: enrichment
uses: jitsecurity-controls/[email protected]
with:
security_control: registry.jit.io/control-enrichment-slim:latest
context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
secret-detection:
if: fromJSON(github.event.inputs.client_payload).payload.workflow_job_name == 'secret-detection' && fromJSON(github.event.inputs.client_payload).payload.workflow_slug == 'workflow-secret-detection'
runs-on: ubuntu-20.04
timeout-minutes: 20
steps:
- name: gitleaks
uses: jitsecurity-controls/[email protected]
with:
security_control: registry.jit.io/control-gitleaks-alpine:latest
security_control_output_file: /tmp/report.json
context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}