Skip to content

Commit

Permalink
fix(ci): solve validation workflow issues
Browse files Browse the repository at this point in the history 
Signed-off-by: Jason Dellaluce <[email protected]>
  • Loading branch information
@jasondellaluce @poiana
jasondellaluce authored and poiana committed Aug 29, 2023
1 parent f135dd2 commit 7590e96
Show file tree
Hide file tree
Showing 2 changed files with 10 additions and 8 deletions.
17 changes: 10 additions & 7 deletions .github/workflows/reusable_validate_plugins.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,7 +38,10 @@ jobs:
uses: actions/checkout@v3

- name: Install system dependencies
run: pip install yq
run: |
apt update -y
apt install -y --no-install-recommends pip git jq
pip install yq
- name: Setup plugin config and rules
id: get-config
Expand All @@ -62,8 +65,8 @@ jobs:
arch=${{ inputs.arch }}
loaded_plugins="$(cat ${{ steps.get-config.outputs.config_file }} | grep '\- name: ' | cut -d ':' -f 2 | xargs)"
sudo mkdir -p /etc/falco/falco
sudo mkdir -p /usr/share/falco/plugins
mkdir -p /etc/falco/falco
mkdir -p /usr/share/falco/plugins
for plugin_name in $loaded_plugins; do
echo Installing locally-built plugin "$plugin_name"...
Expand All @@ -82,11 +85,11 @@ jobs:
for archive in $packages; do
echo Extracting archive "$archive"...
mkdir -p tmpdir && pushd tmpdir
mkdir -p tmpdir && cd tmpdir
tar -xvf $archive
sudo cp -r *.yaml /etc/falco/falco || true
sudo cp -r *.so /usr/share/falco/plugins || true
popd && rm -fr tmpdir
cp -r *.yaml /etc/falco/falco || true
cp -r *.so /usr/share/falco/plugins || true
cd .. && rm -fr tmpdir
done
done
Expand Down
1 change: 0 additions & 1 deletion plugins/gcpaudit/rules/gcp_auditlog_rules.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -58,7 +58,6 @@
- macro: is_cloudsql_service
condition: gcp.serviceName="cloudsql.googleapis.com"


- rule: GCP Cloud SQL database user modified or deleted
desc: Detect when a Cloud SQL DB user has been modified or deleted.
condition: >
Expand Down

0 comments on commit 7590e96

Please sign in to comment.