Skip to content

Commit

Permalink
update actions
Browse files Browse the repository at this point in the history
  • Loading branch information
seanlongcc committed Jul 8, 2024
1 parent 4d70d59 commit 4e60011
Show file tree
Hide file tree
Showing 2 changed files with 19 additions and 8 deletions.
9 changes: 2 additions & 7 deletions .github/workflows/main.yml
Original file line number Diff line number Diff line change
Expand Up @@ -21,13 +21,8 @@ jobs:
steps:
- name: Add Dependencies
run: |
sudo apt-get update
curl -fsSL https://get.docker.com -o get-docker.sh
curl -fsSL https://apt.releases.hashicorp.com/gpg | sudo apt-key add -
sudo apt-add-repository "deb [arch=amd64] https://apt.releases.hashicorp.com $(lsb_release -cs) main"
sudo apt-get install packer
python3 -m pip install --user ansible
python3 -m pip install --upgrade --user ansible
# python3 -m pip install --user ansible
# python3 -m pip install --upgrade --user ansible
npm install -g @mitre/saf
curl -L https://omnitruck.cinc.sh/install.sh | sudo bash -s -- -P cinc-auditor
Expand Down
18 changes: 17 additions & 1 deletion mongo-validate.pkr.hcl
Original file line number Diff line number Diff line change
Expand Up @@ -62,7 +62,8 @@ build {
# docker ps
provisioner "shell-local" {
inline = [
"docker ps -a"
"docker ps -a",
"inspec detect -t docker://mongo-hardened"
]
}

Expand All @@ -80,6 +81,14 @@ build {
script = "spec/scripts/scan.sh"
}

# docker ps
provisioner "shell-local" {
inline = [
"docker ps -a",
"inspec detect -t docker://mongo-hardened"
]
}

### REPORT
provisioner "shell-local" {
environment_vars = [
Expand All @@ -91,6 +100,13 @@ build {
scripts = ["spec/scripts/report.sh"]
}

# docker ps
provisioner "shell-local" {
inline = [
"docker ps -a"
]
}

### VERIFY
provisioner "shell-local" {
environment_vars = [
Expand Down

0 comments on commit 4e60011

Please sign in to comment.