Skip to content

CCL-1026 added tag policy #446

CCL-1026 added tag policy

CCL-1026 added tag policy #446

name: Validate Terraform with Trivy
on:
push:
branches:
- main
pull_request:
permissions:
contents: read
jobs:
RunTerraformValidation:
name: Run Terraform SAST
runs-on: ubuntu-latest
steps:
- name: Clone the Repository
uses: actions/checkout@v4
# Results have to be a table as the organisation does not have Advanced Security license.
- name: Terraform Trivy Scan
uses: aquasecurity/[email protected]
with:
scan-type: 'config'
trivyignores: ".trivyignore"
skip-dirs: "modules/products/static-site"
exit-code: '1'