Fortify AST Action Updates (#52)

* Update fortify.yml with Fortify AST action v1.3

* Update fortify.yml

Specify latest minor version of Fortify action

* Update fortify.yml

Add setup option for SDLC status

* Update fortify.yml

Add Policy Check

* Update fortify.yml

Additional action configuration

* Update fortify.yml

* Update fortify.yml

* Update fortify.yml

* Update fortify.yml

* Update fortify.yml

* Update fortify.yml

* Update fortify.yml

* Update fortify.yml

* Update fortify.yml

Test w/o copy state

* Update fortify.yml

Author: dylanbthomas

.github/workflows/fortify.yml

@@ -27,7 +27,8 @@ jobs:
       actions: read
       contents: read
       security-events: write
-
+      pull-requests: write
+      
     steps:
       # Check out source code
       - name: Check Out Source Code
@@ -45,11 +46,15 @@ jobs:
         uses: fortify/github-action@v1
         with:
           sast-scan: true
+          debricked-sca-scan: true
         env:
           FOD_URL: https://ams.fortify.com
           FOD_TENANT: ${{secrets.FOD_TENANT}}
           FOD_USER: ${{secrets.FOD_USER}}
           FOD_PASSWORD: ${{secrets.FOD_PAT}}
-          FOD_RELEASE: ${{ secrets.FOD_RELEASE_ID }}
-          EXTRA_PACKAGE_OPTS: -oss
           DO_EXPORT: true
+          DO_SETUP: true
+          SETUP_EXTRA_OPTS: --copy-from "${{ github.repository }}:${{ github.event.repository.default_branch }}"
+          DO_JOB_SUMMARY: true
+          DO_PR_COMMENT: true
+          #DO_POLICY_CHECK: true