Skip to content
.github/workflows/secrets-scan.yaml

[chore] add secrets scanning workflow latest #1

Sign in to view logs

[chore] add secrets scanning workflow latest

[chore] add secrets scanning workflow latest #1

Workflow file for this run

.github/workflows/secrets-scan.yaml at 8a54373
# GitHub Actions workflow that calls the brightwheel appsec-tooling reusable workflow for secrets
# scanning on protected branches.
#
# DEPENDENCIES:
#
# * Organization-level Variable (Settings → Secrets and variables → Actions → Variables):
# - APPSEC_SCANNER_PULL_ROLE_ARN: AWS IAM role ARN for ECR scanner image access via OIDC
name: Secrets Scan
on:
# Automatic scanning on every push to PR branches
pull_request:
types: [opened, synchronize, reopened, ready_for_review]
branches:
- master
# Manual trigger
workflow_dispatch:
inputs:
pr_number:
description: "PR number to scan (optional)"
required: false
ref:
description: "Branch/ref to scan (optional, defaults to current)"
required: false
jobs:
scan:
if: ${{ !github.event.pull_request.draft || github.event_name == 'workflow_dispatch' }}
uses: brightwheel/appsec-tooling/.github/workflows/reusable-secrets-scan.yaml@main

Check failure on line 30 in .github/workflows/secrets-scan.yaml

View workflow run for this annotation

GitHub Actions / .github/workflows/secrets-scan.yaml

Invalid workflow file 

error parsing called workflow
".github/workflows/secrets-scan.yaml"
-> "brightwheel/appsec-tooling/.github/workflows/reusable-secrets-scan.yaml@main"
: workflow was not found. See https://docs.github.com/actions/learn-github-actions/reusing-workflows#access-to-reusable-workflows for more information.
secrets: inherit