Sync with plan

escomputers · May 28, 2023 · 32f401a · 32f401a
1 parent f22931c
commit 32f401a
Showing 1 changed file with 9 additions and 2 deletions.
diff --git a/.github/workflows/jit-security.yml b/.github/workflows/jit-security.yml
@@ -1,5 +1,5 @@
 name: Workflows generated by the MVS plan
-'on':
+on:
   workflow_dispatch:
     inputs:
        client_payload:
@@ -15,9 +15,13 @@ jobs:
       with:
         docker_user: jit-bot
         docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
+
         security_control: ghcr.io/jitsecurity-controls/control-enrichment-slim:latest
         security_control_args: --path \${WORK_DIR:-.}
+
         dispatch_type: workflow
+        context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
+        runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}
 
   secret-detection:
     if: fromJSON(github.event.inputs.client_payload).payload.workflow_job_name == 'secret-detection'
@@ -28,7 +32,10 @@ jobs:
       with:
         docker_user: jit-bot
         docker_password: ${{fromJSON(github.event.inputs.client_payload).payload.container_registry_token}}
+
         security_control: ghcr.io/jitsecurity-controls/control-gitleaks-alpine:latest
         security_control_args: detect --config \$GITLEAKS_CONFIG_FILE_PATH --source \${WORK_DIR:-.} -v --report-format json --report-path \$REPORT_FILE --redact --no-git --exit-code 0
         security_control_output_file: /tmp/report.json
-        dispatch_type: workflow
+        dispatch_type: workflow
+        context: ${{toJSON(fromJSON(github.event.inputs.client_payload).context)}}
+        runner_setup: ${{toJSON(fromJSON(github.event.inputs.client_payload).context.job.runner.setup)}}