update workflow to handle multiple file

shailesh-veracode · shailesh-veracode · commit c914ee1ab2a2 · 2024-04-01T18:04:06.000+05:30
diff --git a/.github/workflows/binary-ready-veracode-sast-pipeline-scan.yml b/.github/workflows/binary-ready-veracode-sast-pipeline-scan.yml
@@ -70,19 +70,14 @@ jobs:
           repository: ${{ github.event.client_payload.repository.full_name }}
           run-id: ${{ github.event.client_payload.run_id }}
 
-      - name: Get the name of the downloaded files
-        run: |
-          artifact_file=$(ls -1 ./veracode-artifact | head -n 1)
-          echo "veracode_artifact=$artifact_file" >> $GITHUB_ENV
-
       - name: Veracode Pipeline-Scan
         id: pipeline-scan
-        uses: veracode/Veracode-pipeline-scan-action@feature/DXS-355
+        uses: veracode/Veracode-pipeline-scan-action@master
         with:
           vid: ${{ secrets.VERACODE_API_ID }}
           vkey: ${{ secrets.VERACODE_API_KEY }}
           veracode_policy_name: ${{ github.event.client_payload.policy_name }}
-          file: ./veracode-artifact/${{ env.veracode_artifact }}
+          file: ${{ github.event.client_payload.repository.artifact_name }}
           fail_build: ${{ github.event.client_payload.user_config.break_build_policy_findings }}
           use_upgraded_version: true
 
diff --git a/.github/workflows/binary-ready-veracode-sast-policy-scan.yml b/.github/workflows/binary-ready-veracode-sast-policy-scan.yml
@@ -70,22 +70,17 @@ jobs:
           repository: ${{ github.event.client_payload.repository.full_name }}
           run-id: ${{ github.event.client_payload.run_id }}
 
-      - name: Get the name of the downloaded files
-        run: |
-          artifact_file=$(ls -1 ./veracode-artifact | head -n 1)
-          echo "veracode_artifact=$artifact_file" >> $GITHUB_ENV
-
       - name: Veracode Upload and Scan Action Step
-        uses: veracode/uploadandscan-action@feature/DXS-335
+        uses: veracode/uploadandscan-action@v0.1.3
         id: upload_and_scan
         with:
           vid: '${{ secrets.VERACODE_API_ID }}'
           vkey: '${{ secrets.VERACODE_API_KEY }}'
           appname: ${{ github.event.client_payload.user_config.profile_name }}
           createprofile: true
           version: '${{ github.run_id }}'
-          filepath: ./veracode-artifact/${{ env.veracode_artifact }}
-          include: ${{ github.event.client_payload.modules_to_scan }}
+          filepath: ${{ github.event.client_payload.repository.artifact_name }}
+          # include: ${{ github.event.client_payload.modules_to_scan }}
           policy: ${{ github.event.client_payload.policy_name }}
           scantimeout: 15
           failbuild: ${{ github.event.client_payload.user_config.break_build_policy_findings }}
diff --git a/.github/workflows/binary-ready-veracode-sast-sandbox-scan.yml b/.github/workflows/binary-ready-veracode-sast-sandbox-scan.yml
@@ -70,23 +70,18 @@ jobs:
           repository: ${{ github.event.client_payload.repository.full_name }}
           run-id: ${{ github.event.client_payload.run_id }}
 
-      - name: Get the name of the downloaded files
-        run: |
-          artifact_file=$(ls -1 ./veracode-artifact | head -n 1)
-          echo "veracode_artifact=$artifact_file" >> $GITHUB_ENV
-
       - name: Veracode Upload and Scan Action Step
         id: upload_and_scan
-        uses: veracode/uploadandscan-action@v0.1.2
+        uses: veracode/uploadandscan-action@v0.1.3
         with:
           appname: ${{ github.event.client_payload.user_config.profile_name }}
           createprofile: true
           policy: ${{ github.event.client_payload.policy_name }}
           version: '${{ github.run_id }}'
-          filepath: ./veracode-artifact/${{ env.veracode_artifact }}
+          filepath: ${{ github.event.client_payload.repository.artifact_name }}
           vid: '${{ secrets.VERACODE_API_ID }}'
           vkey: '${{ secrets.VERACODE_API_KEY }}'
           createsandbox: true
           sandboxname: GitHub App Scans-${{ github.event.client_payload.repository.branch }}
-          include: ${{ github.event.client_payload.modules_to_scan }}
+          # include: ${{ github.event.client_payload.modules_to_scan }}
           failbuild: ${{ github.event.client_payload.user_config.break_build_policy_findings }}
diff --git a/.github/workflows/veracode-pipeline-scan.yml b/.github/workflows/veracode-pipeline-scan.yml
@@ -73,7 +73,7 @@ jobs:
       # run the pipeline scan action
       - name: Veracode Pipeline-Scan
         id: pipeline-scan
-        uses: veracode/Veracode-pipeline-scan-action@feature/DXS-355
+        uses: veracode/Veracode-pipeline-scan-action@master
         with:
           vid: ${{ secrets.VERACODE_API_ID }}
           vkey: ${{ secrets.VERACODE_API_KEY }}
diff --git a/.github/workflows/veracode-policy-scan.yml b/.github/workflows/veracode-policy-scan.yml
@@ -67,26 +67,22 @@ jobs:
         with:
           name: veracode-artifact
           path: ./veracode_artifact_directory
-      
-      - name: Get the name of the downloaded files
-        run: |
-          artifact_file=$(ls -1 ./veracode_artifact_directory | head -n 1)
-          echo "veracode_artifact=$artifact_file" >> $GITHUB_ENV
+
       # run the policy scan action
       - name: Veracode Upload and Scan Action Step
-        uses: veracode/uploadandscan-action@feature/DXS-335
+        uses: veracode/uploadandscan-action@v0.1.3
         id: upload_and_scan
         with:
           appname: ${{ inputs.profile_name }}
           createprofile: true
           policy: ${{ inputs.policy_name }}
           version: '${{ github.run_id }}'
-          filepath: ./veracode_artifact_directory/${{ env.veracode_artifact }}
+          filepath: ./veracode_artifact_directory/
           vid: '${{ secrets.VERACODE_API_ID }}'
           vkey: '${{ secrets.VERACODE_API_KEY }}'
           #scanpollinginterval: 30
           scantimeout: 15
-          include: ${{ inputs.modules_to_scan }}
+          # include: ${{ inputs.modules_to_scan }}
           failbuild: ${{ inputs.break_build_policy_findings }}
           use_upgraded_version: true
 
diff --git a/.github/workflows/veracode-sandbox-scan.yml b/.github/workflows/veracode-sandbox-scan.yml
@@ -34,24 +34,20 @@ jobs:
         with:
           name: veracode-artifact
           path: ./veracode_artifact_directory
-      
-      - name: Get the name of the downloaded files
-        run: |
-          artifact_file=$(ls -1 ./veracode_artifact_directory | head -n 1)
-          echo "veracode_artifact=$artifact_file" >> $GITHUB_ENV
+
       # run the policy scan action
       - name: Veracode Upload and Scan Action Step
-        uses: veracode/uploadandscan-action@v0.1.2
+        uses: veracode/uploadandscan-action@v0.1.3
         id: upload_and_scan
         with:
           appname: ${{ inputs.profile_name }}
           createprofile: true
           policy: ${{ inputs.policy_name }}
           version: '${{ github.run_id }}'
-          filepath: ./veracode_artifact_directory/${{ env.veracode_artifact }}
+          filepath: ./veracode_artifact_directory/
           vid: '${{ secrets.VERACODE_API_ID }}'
           vkey: '${{ secrets.VERACODE_API_KEY }}'
           createsandbox: true
           sandboxname: GitHub App Scans-${{ inputs.branch }}
-          include: ${{ inputs.modules_to_scan }}
+          # include: ${{ inputs.modules_to_scan }}
           failbuild: ${{ inputs.break_build_policy_findings }}
