From 33c81333fd238e8f925310ded7ef3fa012b75473 Mon Sep 17 00:00:00 2001
From: vibhutigoyal <120031904+vibhutigoyal@users.noreply.github.com>
Date: Tue, 9 May 2023 15:18:59 +0530
Subject: [PATCH] feat:updated changelog.yml name and file (#7)

feat: updated tfsec.yml file
---
 .../{changelog.yaml => changelog.yml}         |  5 +--
 .github/workflows/tfsec.yml                   | 45 +++----------------
 2 files changed, 8 insertions(+), 42 deletions(-)
 rename .github/workflows/{changelog.yaml => changelog.yml} (69%)

diff --git a/.github/workflows/changelog.yaml b/.github/workflows/changelog.yml
similarity index 69%
rename from .github/workflows/changelog.yaml
rename to .github/workflows/changelog.yml
index 85b1665..4b735f5 100644
--- a/.github/workflows/changelog.yaml
+++ b/.github/workflows/changelog.yml
@@ -1,14 +1,13 @@
 name: changelog
 permissions: write-all
-
 on:
   push:
     tags:
       - "*"
-  # Allows you to run this workflow manually from the Actions tab
   workflow_dispatch:
 jobs:
-  call-workflow-changelog:
+  changelog:
     uses: clouddrove/github-shared-workflows/.github/workflows/changelog.yml@master
+    secrets: inherit
     with:
       branch: 'master'
\ No newline at end of file
diff --git a/.github/workflows/tfsec.yml b/.github/workflows/tfsec.yml
index c151b9c..9aaf588 100644
--- a/.github/workflows/tfsec.yml
+++ b/.github/workflows/tfsec.yml
@@ -1,44 +1,11 @@
 name: tfsec
+permissions: write-all
 on:
   pull_request:
-
+  workflow_dispatch:
 jobs:
   tfsec:
-    name: tfsec sarif report
-    runs-on: ubuntu-latest
-
-    steps:
-      - name: Clone repo
-        uses: actions/checkout@master
-
-      - name: tfsec
-        uses: aquasecurity/tfsec-sarif-action@v0.1.0
-        with:
-          sarif_file: tfsec.sarif
-          working_directory:
-          _example/binary
-          _example/key-value
-          _example/plaintext
-          full_repo_scan: true
-
-      - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@v1
-        with:
-          # Path to SARIF file relative to the root of the repository
-          sarif_file: tfsec.sarif
-
-#      - name: tfsec commenter for PR
-#        uses: tfsec/tfsec-pr-commenter-action@main
-#        with:
-#          GITHUB_TOKEN: ${{ secrets.GITHUB}}
-#          working_directory: ./_example/
-#
-#      - name: 'Terraform security scan Advanced'
-#        uses: triat/terraform-security-scan@v3.0.3
-#        if: github.event_name == 'pull_request'
-#        env:
-#          GITHUB_TOKEN: ${{ secrets.GITHUB}}
-#          tfsec_actions_working_dir: ./_example/
-#          tfsec_actions_comment: true
-#          tfsec_output_format: sarif
-#        continue-on-error: true
\ No newline at end of file
+    uses: clouddrove/github-shared-workflows/.github/workflows/tfsec.yml@master
+    secrets: inherit
+    with:
+      working_directory: '.'
\ No newline at end of file