@@ -14,35 +14,38 @@ jobs:
1414 - name : Checkout
1515 uses : actions/checkout@v2
1616
17- # - name: build local container
18- # uses: docker/build-push-action@v2
19- # with:
20- # tags: scannning-image:latest
21- # push: false
22- # load: true
17+ - name : build local container
18+ uses : docker/build-push-action@v2
19+ with :
20+ tags : scannning-image:latest
21+ push : false
22+ load : true
2323
24- # - name: sarif-scan
25- # id: sarif-scan
26- # uses: anchore/scan-action@v3
27- # with:
28- # image: scannning-image:latest
29- # fail-build: false
30- # severity-cutoff: critical
31- # acs-report-enable: true
24+ - name : sarif-scan
25+ id : sarif-scan
26+ uses : anchore/scan-action@v3
27+ with :
28+ image : scannning-image:latest
29+ fail-build : false
30+ severity-cutoff : critical
31+ acs-report-enable : true
3232
33- # - name: Inspect SARIF report
34- # run: cat ${{ steps.sarif-scan.outputs.sarif }}
33+ - name : Inspect SARIF report
34+ run : cat ${{ steps.sarif-scan.outputs.sarif }}
3535
36- # - name: upload SARIF report
37- # uses: github/codeql-action/upload-sarif@v1
38- # with:
39- # sarif_file: ${{ steps.sarif-scan.outputs.sarif }}
36+ - name : upload SARIF report
37+ uses : github/codeql-action/upload-sarif@v1
38+ with :
39+ sarif_file : ${{ steps.sarif-scan.outputs.sarif }}
4040
4141 deploy :
4242 needs : scan
4343 name : Deploy
4444 runs-on : ubuntu-latest
4545 steps :
46+ - name : Checkout
47+ uses : actions/checkout@v2
48+
4649 - name : Configure AWS credentials
4750 uses : aws-actions/configure-aws-credentials@v1
4851 with :
6467 # Build a docker container and
6568 # push it to ECR so that it can
6669 # be deployed to ECS.
67- cd ..
68- ls -la
6970 docker build -t $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG .
7071 docker push $ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG
7172 echo "::set-output name=image::$ECR_REGISTRY/$ECR_REPOSITORY:$IMAGE_TAG"
0 commit comments