name: cloudgeni-static-analysis
on:
workflow_dispatch:
pull_request:
jobs:
scan:
runs-on: ubuntu-latest
steps:
- name: Trigger Cloudgeni static analysis
env:
CLOUDGENI_API_URL: ${{ secrets.CLOUDGENI_API_URL }}
CLOUDGENI_API_KEY: ${{ secrets.CLOUDGENI_API_KEY }}
CLOUDGENI_ORG_ID: ${{ secrets.CLOUDGENI_ORG_ID }}
CLOUDGENI_REPO_ID: ${{ secrets.CLOUDGENI_REPO_ID }}
run: |
curl --fail --silent --show-error \
-X POST \
-H "Content-Type: application/json" \
-H "X-CLOUDGENI-API-KEY: $CLOUDGENI_API_KEY" \
"$CLOUDGENI_API_URL/api/v1/organizations/$CLOUDGENI_ORG_ID/repositories/$CLOUDGENI_REPO_ID/static-analysis" \
-d '{"analysisEngine":"checkov","excludedPaths":[]}'