feat: Add the lw-scanner to the CDK (#11)

jon-stewart · web-flow · commit 4dc104e5fd90 · 2024-02-06T10:24:41.000-08:00
* feat: Add the lw-scanner to the CDK

* fix: rename binary

* fix: don't wait on the cdk-ingest workflow
diff --git a/.github/workflows/cdk.yaml b/.github/workflows/cdk.yaml
@@ -0,0 +1,21 @@
+name: cdk
+
+on:
+  release:
+    action: released
+
+jobs:
+  deploy:
+    runs-on: "ubuntu-latest"
+    permissions:
+      contents: read
+    steps:
+      - name: Deploy to production CDK
+        uses: aurelien-baudet/workflow-dispatch@v2
+        with:
+          workflow: cdk-ingest.yaml
+          repo: lacework/services
+          ref: main
+          token: ${{ secrets.RELENG_GH_TOKEN }}
+          inputs: '{ "owner": "lacework", "repository": "lacework-vulnerability-scanner", "tag": "${{  github.event.release.tag_name }}" }'
+          wait-for-completion: false
diff --git a/CDK.yaml b/CDK.yaml
@@ -0,0 +1,14 @@
+name: vuln-scanner
+binary_name: lw-scanner
+component_type: CLI_COMMAND
+description: Lacework inline scanner
+feature_flag: ""
+private: false
+install_message: >
+  Having installed the 'vuln-scanner' component you unlocked a new command:
+  
+    lacework vuln-scanner
+
+  This new command will perform an inline scan outside of Lacework.  Further information can be
+  found at https://docs.lacework.net/console/local-scanning-quickstart.
+update_message: ""
