Force to run on push

department-of-veterans-affairs · Dec 30, 2024 · 1b2f7e7 · 1b2f7e7
1 parent 2695a26
commit 1b2f7e7
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 4 deletions.
diff --git a/.github/actions/build-push-artifacts/action.yml b/.github/actions/build-push-artifacts/action.yml
@@ -51,4 +51,4 @@ runs:
       env:
         GH_TOKEN: ${{ github.token }}
       run: |
-        gh workflow run -r 2188-enhanced-image-scan -F image-tag=${{ inputs.ref }} enhanced-image-scan.yml
+        gh workflow run -r main -F image-tag=${{ inputs.ref }} enhanced-image-scan.yml
diff --git a/.github/workflows/enhanced-image-scan.yml b/.github/workflows/enhanced-image-scan.yml
@@ -6,9 +6,11 @@ on:
       image-tag:
         required: true
         type: string
+  push:
+    branches: "2188-enhanced-image-scan"
 
 jobs:
-  twistlock-scan:
+  enhanced-image-scan:
     runs-on: ${{ vars.RUNS_ON }}
     steps:
       - uses: actions/checkout@v4
@@ -35,8 +37,8 @@ jobs:
         uses: aws-actions/vulnerability-scan-github-action-for-amazon-inspector@v1
         id: inspector
         with:
-          artifact_type: 'container'
-          artifact_path: ${{ inputs.image-tag }}
+          artifact_type: 'repository'
+          artifact_path: '171875617347.dkr.ecr.us-gov-west-1.amazonaws.com/notification_api:ce8772711cc14250b6bb7d6b894ac228c0c2658d' # ${{ inputs.image-tag }}
           critical_threshold: 0 # testing forced failure
           high_threshold: ${{ secrets.SCAN_HIGH_THRESHOLD }}