Fix: Ensure SECURE_TOKEN is injected properly

higakikeita · higakikeita · commit 40634cad25b0 · 2025-07-16T17:24:20.000+09:00
diff --git a/.github/workflows/scan.yml b/.github/workflows/scan.yml
@@ -25,15 +25,15 @@ jobs:
 
       - name: Debug
         env:
-          SYSDIG_SECURE_TOKEN: ${{ secrets.SYSDIG_SECURE_TOKEN }}
+          SECURE_API_TOKEN: ${{ secrets.SECURE_API_TOKEN }}
         run: |
-          echo "🔍 Token Length: ${#SYSDIG_SECURE_TOKEN}"
-          echo "🔍 Token Head: ${SYSDIG_SECURE_TOKEN:0:5}"
-          if [ -z "$SYSDIG_SECURE_TOKEN" ]; then
-            echo "❌ SYSDIG_SECURE_TOKEN is NOT set!"
+          echo "🔍 Token Length: ${#SECURE_API_TOKEN}"
+          echo "🔍 Token Head: ${SECURE_API_TOKEN:0:5}"
+          if [ -z "$SECURE_API_TOKEN" ]; then
+            echo "❌ SECURE_API_TOKEN is NOT set!"
             exit 1
           else
-            echo "✅ SYSDIG_SECURE_TOKEN is available."
+            echo "✅ SECURE_API_TOKEN is available."
           fi
 
       - name: Run Sysdig Scan (voting-app)
@@ -43,7 +43,7 @@ jobs:
             --user 0 \
             -v "$(pwd)/scan-logs:/home/nonroot/scan-logs" \
             -v /var/run/docker.sock:/var/run/docker.sock \
-            -e SYSDIG_SECURE_TOKEN="${{ secrets.SYSDIG_SECURE_TOKEN }}" \
+            -e SECURE_API_TOKEN="${{ secrets.SECURE_API_TOKEN }}" \
             quay.io/sysdig/sysdig-cli-scanner:1.22.4 \
               --apiurl "$SYS_DIG_SECURE_URL" \
               --loglevel debug \
