fix: added var file option for checkov (#50)

Author: dverma-cd

.github/workflows/checkov.yml

@@ -11,6 +11,10 @@ on:
         required: true
         type: string
         default: 'true'
+     var_file:
+        required: false
+        type: string
+    
 # A workflow run is made up of one or more jobs that can run sequentially or in parallel
 jobs:
   # This workflow contains a single job called "scan"
@@ -37,6 +41,7 @@ jobs:
           output_file_path: console,results.sarif
           soft_fail: true
           directory: ${{ inputs.directory}}
+          var_file: ${{ inputs.var_file}}
 
       - name: Checkov GitHub Action
         if: ${{ inputs.continue_on_error == 'false' }}
@@ -46,6 +51,7 @@ jobs:
           output_format: cli,sarif
           output_file_path: console,results.sarif
           directory: ${{ inputs.directory}}
+          var_file: ${{ inputs.var_file}}
 
 
       - name: Upload SARIF file
@@ -57,4 +63,4 @@ jobs:
         # Or 'soft_fail: true' to checkov.
         if: success() || failure()
         with:
-          sarif_file: results.sarif
+          sarif_file: results.sarif

docs/checkov.md

@@ -31,5 +31,6 @@ jobs:
     uses: clouddrove/github-shared-workflows/.github/workflows/checkov.yml@master # shared workflow 
     with:
      directory: # specify your working folder from repo
-     continue_on_error: true #action will continue on error 
-```
+     continue_on_error: true #action will continue on error
+     var_file: # define var file path (optional)
+```