Skip to content
cfn_nag

chore(aws-api-mcp-server): upgrade AWS CLI to v1.42.68 #7168

Sign in to view logs

chore(aws-api-mcp-server): upgrade AWS CLI to v1.42.68

chore(aws-api-mcp-server): upgrade AWS CLI to v1.42.68 #7168

Workflow file for this run

.github/workflows/cfn_nag.yml at 41b7bff
name: cfn_nag
# Controls when the workflow will run
on:
# Triggers the workflow on push or pull request events but only for the "main" branch
push:
branches: [ "main" ]
pull_request:
branches: [ "main" ]
# Allows you to run this workflow manually from the Actions tab
workflow_dispatch:
permissions: {}
# A workflow run is made up of one or more jobs that can run sequentially or in parallel
jobs:
# This workflow contains a single job called "scan"
scan:
permissions:
contents: read # for actions/checkout to fetch code
security-events: write # for github/codeql-action/upload-sarif to upload SARIF results
# The type of runner that the job will run on
runs-on: ubuntu-latest
# Steps represent a sequence of tasks that will be executed as part of the job
steps:
# Checks-out your repository under $GITHUB_WORKSPACE, so follow-up steps can access it
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 #v5.0.0
- name: Simple test
uses: stelligent/cfn_nag@8b5f03da74202ba323a145e9d037ddce6cab9dec
with:
input_path: .
extra_args: -o sarif -g
output_path: cfn_nag.sarif
- name: Upload SARIF file
uses: github/codeql-action/upload-sarif@57eebf61a2246ab60a0c2f5a85766db783ad3553 # v3.28.15
# Results are generated only on a success or failure
# this is required since GitHub by default won't run the next step
# when the previous one has failed. Security checks that do not pass will 'fail'.
# An alternative is to add `continue-on-error: true` to the previous step
# Or 'soft_fail: true' to checkov.
if: success() || failure()
with:
sarif_file: cfn_nag.sarif