forked from jmagee70/appsec
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathbuildspec.yml
More file actions
28 lines (27 loc) · 942 Bytes
/
buildspec.yml
File metadata and controls
28 lines (27 loc) · 942 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
version: 0.2
env:
variables:
BC_SOURCE: "codebuild"
PRISMA_API_URL: "https://api4.prismacloud.io"
parameter-store:
BC_API_KEY: "bc-api-key"
phases:
install:
runtime-versions:
python: 3.7
commands:
- pip3 install checkov
- echo Installing codebuild-extras...
- curl -fsSL https://raw.githubusercontent.com/bridgecrewio/aws-codebuild-extras/master/install >> extras.sh
- . ./extras.sh
build:
commands:
- pip3 uninstall -y aws-sam-cli
- checkov -d . --use-enforcement-rules --bc-api-key be1123fc-6597-467b-a8e6-563688cafc0a::4JANrV1yJwaUDg+XqunIIEbvVq4= --repo-id $CODEBUILD_ACCOUNT_ID/$CODEBUILD_PROJECT --branch $CODEBUILD_GIT_BRANCH -o cli -o junitxml --output-file-path console,test_results.xml
reports:
prisma-cloud-infrastructure-security:
files:
- test_results.xml
discard-paths: yes
file-format: JunitXml
Learn more on Tech Docs