Trivy gh actions (#17208)

* Adding basic implementation to be refined * trivy action: * Updates * Updates for integration * Delete .github/actions/trivy/action.yml --------- Co-authored-by: matts <22215332+devopsmatt@users.noreply.github.com>
CDCgov · Jan 28, 2025 · 598cedf · 598cedf
1 parent 83041fb
commit 598cedf
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 8 deletions.
diff --git a/.github/workflows/log_management.yml b/.github/workflows/log_management.yml
@@ -13,8 +13,7 @@ jobs:
       - uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938
       - name: Workflow Housekeeper - workflows NOT in default branch
 
-        uses: JosiahSiegel/workflow-housekeeper@731cc20bb613208b34efb6ac74aab4ba147abb50
-        ## DevSecOps - Aquia (Replace) - uses: ./.github/actions/workflow-housekeeper
+        uses: ./.github/actions/workflow-housekeeper
 
         env:
           GITHUB_TOKEN: ${{ secrets.LOG_MANAGEMENT_TOKEN }}
@@ -25,8 +24,7 @@ jobs:
           dry-run: false
       - name: Workflow Housekeeper - workflows in default branch
 
-        uses: JosiahSiegel/workflow-housekeeper@731cc20bb613208b34efb6ac74aab4ba147abb50
-        ## DevSecOps - Aquia (Replace) - uses: ./.github/actions/workflow-housekeeper
+        uses: ./.github/actions/workflow-housekeeper
 
         env:
           GITHUB_TOKEN: ${{ secrets.LOG_MANAGEMENT_TOKEN }}

diff --git a/.github/workflows/prepare_deployment_branch.yaml b/.github/workflows/prepare_deployment_branch.yaml
@@ -28,17 +28,15 @@ jobs:
 
       - name: "Create branch '${{ env.BRANCH_NAME }}' to contain the changes for the deployment on ${{ env.DEPLOYMENT_DATE }}"
 
-        uses: JosiahSiegel/remote-branch-action@dbe7a2138eb064fbfdb980abee918091a7501fbe
-        ## DevSecOps - Aquia (Replace) - uses: ./.github/actions/remote-branch-action
+        uses: ./.github/actions/remote-branch-action
 
         with:
           branch: "${{ env.BRANCH_NAME }}"
 
       - name: "Prepare a Pull Request from ${{ env.BRANCH_NAME }} into production branch"
         id: pr
 
-        uses: JosiahSiegel/reliable-pull-request-action@ae8d0c88126329ee363a35392793d0bc94cb82e7
-        ## DevSecOps - Aquia (Replace) - uses: ./.github/actions/reliable-pull-request-action
+        uses: ./.github/actions/reliable-pull-request-action
 
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}