diff --git a/.github/workflows/checkov.yml b/.github/workflows/checkov.yml new file mode 100644 index 000000000..98b8e2d74 --- /dev/null +++ b/.github/workflows/checkov.yml @@ -0,0 +1,23 @@ +name: Checkov + +on: + #pull_request: + push: + # branches: + # - main + +permissions: read-all + +jobs: + checkov: + name: Run Checkov for IaC Security Analysis + runs-on: ubuntu-latest + steps: + - name: Check out code + uses: actions/checkout@v3 + + - name: Run Checkov with GitHub Action + uses: bridgecrewio/checkov-action@master + with: + framework: dockerfile + quiet: true