Skip to content

Commit a9fc560

Browse files
author
Felipe Costa
authored
Update README.MD
1 parent b1a108b commit a9fc560

File tree

1 file changed

+20
-11
lines changed

1 file changed

+20
-11
lines changed

README.MD

Lines changed: 20 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -168,7 +168,7 @@ be given with `DSSC_IMAGE_NAME`.
168168
## Example Workflow Using Github Actions
169169

170170
```yml
171-
name: Deep Security Smart Check Pipeline Example
171+
name: Deep Security Smart Check
172172
173173
on:
174174
push:
@@ -179,19 +179,28 @@ jobs:
179179
SmartCheck-Scan-Action:
180180
runs-on: ubuntu-latest
181181
steps:
182-
- name: Deep Security Smart Check
183-
uses: felipecosta09/Deep-Security-Smart-Check-Scan-Action@v1.0.7-alpha
182+
- name: Deep Security Smart Check Scan ECR
183+
uses: felipecosta09/Deep-Security-Smart-Check-Scan-Action@v1.0.0
184+
with:
185+
DSSC_IMAGE_NAME: myECRrepo/myimage
186+
DSSC_SMARTCHECK_HOST: ${{ secrets.DSSC_SMARTCHECK_HOST }}
187+
DSSC_SMARTCHECK_USER: ${{ secrets.DSSC_SMARTCHECK_USER }}
188+
DSSC_SMARTCHECK_PASSWORD: ${{ secrets.DSSC_SMARTCHECK_PASSWORD }}
189+
DSSC_IMAGE_PULL_AUTH: ${{ secrets.DSSC_IMAGE_PULL_AUTH }}
190+
DSSC_FINDINGS_THRESHOLD: '{"malware": 999, "vulnerabilities": { "defcon1": 999, "critical": 999, "high": 999 }, "contents": { "defcon1": 999, "critical": 999, "high": 999 }, "checklists": { "defcon1": 999, "critical": 999, "high": 999 }}'
191+
DSSC_INSECURE_SKIP_TLS_VERIFY: true
192+
DSSC_INSECURE_SKIP_REGISTRY_TLS_VERIFY: true
193+
- name: Deep Security Smart Check Scan ACR
194+
uses: felipecosta09/Deep-Security-Smart-Check-Scan-Action@v1.0.0
184195
with:
185-
# Container repository, eg myorg/myimage.
186-
DSSC_IMAGE_NAME: ${{ secrets.DSSC_IMAGE_NAME }}
187-
# Deep Security Smart Check url, eg mydomain.com.
196+
DSSC_IMAGE_NAME: myrepo.azurecr.io/myimage
188197
DSSC_SMARTCHECK_HOST: ${{ secrets.DSSC_SMARTCHECK_HOST }}
189-
# Deep Security Smart Check username, eg admin.
190198
DSSC_SMARTCHECK_USER: ${{ secrets.DSSC_SMARTCHECK_USER }}
191-
# Deep Security Smart Check password, eg 12345.
192-
DSSC_SMARTCHECK_PASS: ${{ secrets.DSSC_SMARTCHECK_PASSWORD }}
193-
# Container registry credentials in a json format, eg '{"username":"<user>","password":"<password>"}' or {"aws":{"region":"us-east-1","accessKeyID":"'AWS_ACCESS_KEY_ID'","secretAccessKey":"'AWS_SECRET_ACCESS_KEY'"}}'
194-
DSSC_IMAGE_PULL_AUTH: ${{ secrets.DSSC_IMAGE_PULL_AUTH }}
199+
DSSC_SMARTCHECK_PASSWORD: ${{ secrets.DSSC_SMARTCHECK_PASSWORD }}
200+
DSSC_IMAGE_PULL_AUTH: '{"username": "${{ secrets.ACR_USER }}","password": "${{ secrets.ACR_PASSWORD }}"}'
201+
DSSC_FINDINGS_THRESHOLD: '{"malware": 999, "vulnerabilities": { "defcon1": 999, "critical": 999, "high": 999 }, "contents": { "defcon1": 999, "critical": 999, "high": 999 }, "checklists": { "defcon1": 999, "critical": 999, "high": 999 }}'
202+
DSSC_INSECURE_SKIP_TLS_VERIFY: true
203+
DSSC_INSECURE_SKIP_REGISTRY_TLS_VERIFY: true
195204
```
196205

197206
## Example Workflow Running a Docker Container

0 commit comments

Comments
 (0)