feat: export findings to securityhub

achoimet · achoimet · commit 834e50144efd · 2026-01-06T11:09:26.000+01:00
diff --git a/.github/workflows/reusable-cve-scan.yml b/.github/workflows/reusable-cve-scan.yml
@@ -215,6 +215,13 @@ jobs:
             cp trivy-results.asff trivy-findings.json
           fi
 
+          # Debug: print a summary of the findings being sent to Security Hub
+          echo "=== Debug: trivy-findings.json (first 2 findings) ==="
+          jq '.[0:2]' trivy-findings.json || true
+
+          echo "=== Debug: total findings ==="
+          jq 'length' trivy-findings.json || true
+
           TOTAL=$(jq 'length' trivy-findings.json)
           if [ "$TOTAL" -eq 0 ]; then
             echo "No findings to import into Security Hub"
