Merge pull request #2 from kusaridev/pxp928-update-kusari-cli-image

pxp928 · web-flow · commit c1f8ab799c38 · 2026-01-30T08:44:14.000-05:00
update kusari cli image and github fixes
diff --git a/.github/workflows/kusari-scan-v1.yml b/.github/workflows/kusari-scan-v1.yml
@@ -48,7 +48,7 @@ on:
         description: 'Kusari CLI container image'
         required: false
         type: string
-        default: 'ghcr.io/kusaridev/kusari-cli@sha256:955262cae4d161f68cb623b273cb9a3d589004a2e7f661b15ff0d1697e494903'
+        default: 'ghcr.io/kusaridev/kusari-cli@sha256:b6ae0000141aa49efe58862758947609ae313d024c6ce302c55353a6d5b390d9'
       fail_on_issues:
         description: 'Fail workflow if security issues are found'
         required: false
@@ -76,14 +76,17 @@ jobs:
 
     steps:
       - name: Install dependencies
-        run: apk add --no-cache git jq gnutar bzip2
+        run: apk add --no-cache git jq gnutar bzip2 libstdc++
 
       - name: Checkout code
         uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9
         with:
           fetch-depth: 0
           persist-credentials: false
 
+      - name: Configure git safe directory
+        run: git config --global --add safe.directory "$GITHUB_WORKSPACE"
+
       - name: Fetch base branch
         env:
           BASE_REF: ${{ github.base_ref }}
diff --git a/README.md b/README.md
@@ -88,8 +88,9 @@ See [`.github/workflows/kusari-scan-v1.yml`](.github/workflows/kusari-scan-v1.ym
 To use these templates, you need Kusari Inspector credentials:
 
 1. Sign up at [https://us.kusari.cloud/signup](https://us.kusari.cloud/signup)
-2. Get your `KUSARI_CLIENT_ID` and `KUSARI_CLIENT_SECRET`
-3. Add them to your CI/CD platform's secrets/variables
+1. Go to API Keys and Create a New Key with all inspector permisions (inspector_bundle_scan, inspector_result_user_read, and inspector_result_workspace_read)
+1. Copy the ID and secret into your `KUSARI_CLIENT_ID` and `KUSARI_CLIENT_SECRET` respectively
+1. Add them to your CI/CD platform's secrets/variables
 
 ## Enterprise / Self-Hosted Setup
 
diff --git a/gitlab/kusari-scan-v1.yml b/gitlab/kusari-scan-v1.yml
@@ -40,7 +40,7 @@
 #   - KUSARI_POST_COMMENT: Set to "true" to post results as MR comment (default: "true")
 
 variables:
-  KUSARI_CLI_IMAGE: "ghcr.io/kusaridev/kusari-cli@sha256:955262cae4d161f68cb623b273cb9a3d589004a2e7f661b15ff0d1697e494903"
+  KUSARI_CLI_IMAGE: "ghcr.io/kusaridev/kusari-cli@sha256:b6ae0000141aa49efe58862758947609ae313d024c6ce302c55353a6d5b390d9"
   KUSARI_FAIL_ON_ISSUES: "false"
   KUSARI_POST_COMMENT: "true"
 
