Merge pull request #1 from rapid7/ENG-19805

ENG-19805 support explicit driver as input

Author: bhenderson-r7

.github/workflows/pull_request_example.yml

@@ -18,6 +18,7 @@ jobs:
           config_name: AWS CIS Benchmark 1.4
           scan_name: Scan on Pull Request
           target: example.yml
+          driver: cft
       - name: Upload SARIF file
         if: always()
         uses: github/codeql-action/upload-sarif@v2

README.md

@@ -30,6 +30,9 @@ Read how to set secrets here: https://docs.github.com/en/actions/security-guides
 
     # File to scan
     target: example.yml
+
+    # Optional driver to use when unable to autodetect (terraform|cft)
+    driver: terraform
 ```
 
 An example workflow may look like this:
@@ -61,5 +64,4 @@ jobs:
         uses: github/codeql-action/upload-sarif@v2
         with:
           sarif_file: scan_output.sarif
-
 ```

action.yml

@@ -18,6 +18,10 @@ inputs:
   scan_name:
     description: Name of this scan
     required: true
+  driver:
+    description: Name of the scan driver to use (e.g. terraform|cft)
+    required: false
+    default: ""
 outputs:
   stdout:
     description: Output of the mimics scan command
@@ -34,6 +38,8 @@ runs:
     - ${{ inputs.config_name }}
     - -s
     - ${{ inputs.scan_name }}
+    - -p
+    - ${{ inputs.driver }}
     - --report-formats
     - all
     - --no-progress