From 14b097d9f6cfa2d409c82753e56294f1f659a677 Mon Sep 17 00:00:00 2001 From: Mathieu Gaubert Date: Fri, 20 Dec 2024 16:52:52 +0100 Subject: [PATCH 1/2] feat(tf-quality): fix version for checkov-action --- .github/workflows/terraform-quality.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/terraform-quality.yml b/.github/workflows/terraform-quality.yml index 5d5d6c8..651df29 100644 --- a/.github/workflows/terraform-quality.yml +++ b/.github/workflows/terraform-quality.yml @@ -61,7 +61,7 @@ jobs: - name: checkout uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4 - name: checkov - uses: bridgecrewio/checkov-action@master + uses: bridgecrewio/checkov-action@63fbdab56e22a18bbc16fdc5208c0d30a71f3a24 # v12.2937.0 with: directory: ${{ inputs.workdir }} framework: terraform From 14aa6123fe9ac41519e83eb8561d58112cfcaae4 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Nicolas=20Lev=C3=A9e?= Date: Fri, 20 Dec 2024 17:08:15 +0100 Subject: [PATCH 2/2] fix: .github/workflows/terraform-quality.yml --- .github/workflows/terraform-quality.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/terraform-quality.yml b/.github/workflows/terraform-quality.yml index 651df29..60e956f 100644 --- a/.github/workflows/terraform-quality.yml +++ b/.github/workflows/terraform-quality.yml @@ -61,7 +61,8 @@ jobs: - name: checkout uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4 - name: checkov - uses: bridgecrewio/checkov-action@63fbdab56e22a18bbc16fdc5208c0d30a71f3a24 # v12.2937.0 + # lock checkov image version to v3.2.340: newer version are buggy (`TypeError: int object is not subscriptable`) + uses: bridgecrewio/checkov-action@a2b0083e03f46abd10e1c6d3e48a896dad73499e # master with: directory: ${{ inputs.workdir }} framework: terraform