feat: export findings to securityhub

achoimet · achoimet · commit d76c62aae38f · 2026-01-06T11:14:50.000+01:00
diff --git a/.github/workflows/reusable-cve-scan.yml b/.github/workflows/reusable-cve-scan.yml
@@ -214,6 +214,10 @@ jobs:
           else
             cp trivy-results.asff trivy-findings.json
           fi
+          
+          # Fix ProductName to match Security Hub expectations
+          jq 'map(.ProductName = "Aqua Security")' trivy-findings.json > trivy-findings-fixed.json
+          mv trivy-findings-fixed.json trivy-findings.json
 
           # Debug: print a summary of the findings being sent to Security Hub
           echo "=== Debug: trivy-findings.json (first 2 findings) ==="
