From c1042a4397d616e047ecf9de647bfcd1d16498e0 Mon Sep 17 00:00:00 2001
From: seanlongcc <seanlongcc@gmail.com>
Date: Mon, 8 Jul 2024 17:30:50 -0400
Subject: [PATCH] update actions

---
 .github/workflows/main.yml | 6 ++++--
 mongo-validate.pkr.hcl     | 5 -----
 2 files changed, 4 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 046808b..6ad9cc3 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -5,8 +5,8 @@ on:
   workflow_dispatch:
 
 jobs:
-  my_job:
-    name: Harden MongoDB Container
+  harden_validate_mongodb:
+    name: Harden and Validate MongoDB Container
 
     runs-on: ubuntu-latest
 
@@ -17,6 +17,7 @@ jobs:
       CA_FILE_BASE64_AA: ${{ secrets.CA_FILE_BASE64_AA }}
       CA_FILE_BASE64_AB: ${{ secrets.CA_FILE_BASE64_AB }}
       CERTIFICATE_KEY_FILE: ${{ secrets.CERTIFICATE_KEY_FILE }}
+      INSPEC_INPUTS: ${{ secrets.INSPEC_INPUTS }}
 
     steps:
       - name: Add Dependencies
@@ -33,6 +34,7 @@ jobs:
           echo "${{ env.CA_FILE_BASE64_AB }}" >> CA_FILE
           base64 --decode CA_FILE > certificates/dod_CAs.pem
           echo "${{ env.CERTIFICATE_KEY_FILE }}" > certificates/mongodb.pem
+          echo "${{ env.INSPEC_INPUTS }}" > spec/mongo-inspec-profile/inputs.yml
 
       - name: Run Packer Hardening
         run: |
diff --git a/mongo-validate.pkr.hcl b/mongo-validate.pkr.hcl
index fe1871a..b9cb8fc 100644
--- a/mongo-validate.pkr.hcl
+++ b/mongo-validate.pkr.hcl
@@ -41,11 +41,6 @@ source "docker" "hardened" {
   commit      = false
   pull        = false
   discard     = true
-  // run_command = [
-  //   "-d",
-  //   "--name", "${var.input_hardened_image.name}",
-  //   "{{.Image}}",
-  // ]
   run_command = [
     "-d",
     "--name", "${var.input_hardened_image.name}",