Chaneg vulnerability_severity to be a choice type

IABTechLab · Mar 21, 2024 · a7e2bac · a7e2bac
1 parent 1f244eb
commit a7e2bac
Show file tree

Hide file tree

Showing 2 changed files with 12 additions and 6 deletions.
diff --git a/.github/workflows/release-docker-image.yaml b/.github/workflows/release-docker-image.yaml
@@ -36,9 +36,12 @@ on:
         type: string
         default: main
       vulnerability_severity:
-        description: The severity to fail the workflow if such vulnerability is detected. DO NOT override it unless a Jira ticket is raised. Must be one of ['CRITICAL', 'CRITICAL,HIGH' or 'CRITICAL,HIGH,MEDIUM'] (without space in between).
-        type: string
-        default: 'CRITICAL,HIGH'
+        description: The severity to fail the workflow if such vulnerability is detected. DO NOT override it unless a Jira ticket is raised.
+        type: choice
+        options:
+        - CRITICAL,HIGH
+        - CRITICAL,HIGH,MEDIUM
+        - CRITICAL (DO NOT use if JIRA ticket not raised)
 
 jobs:
   Image:

diff --git a/.github/workflows/validate-image.yaml b/.github/workflows/validate-image.yaml
@@ -3,9 +3,12 @@ on:
   workflow_dispatch:
     inputs:
       failure_severity:
-        description: Must be one of ['CRITICAL', 'CRITICAL,HIGH' or 'CRITICAL,HIGH,MEDIUM'] (without space in between).
-        required: false
-        default: CRITICAL,HIGH
+        description: The severity to fail the workflow if such vulnerability is detected. DO NOT override it unless a Jira ticket is raised.
+        type: choice
+        options:
+        - CRITICAL,HIGH
+        - CRITICAL,HIGH,MEDIUM
+        - CRITICAL (DO NOT use if JIRA ticket not raised)
       fail_on_error:
         description: If true, will fail the build if vulnerabilities are found
         required: true