Merge pull request #235 from actions/ncalteen/checkov

ncalteen · web-flow · commit 5dbafc354c67 · 2025-10-31T10:31:23.000-04:00
Add custom checkov config
diff --git a/.checkov.yaml b/.checkov.yaml
diff --git a/.checkov.yml b/.checkov.yml
@@ -0,0 +1,9 @@
+# See: https://www.checkov.io/1.Welcome/Quick%20Start.html
+
+compact: true
+quiet: true
+skip-path:
+  - coverage
+  - node_modules
+skip-check:
+  - CKV_GHA_7
diff --git a/.github/workflows/example-workflow.yml b/.github/workflows/example-workflow.yml
@@ -6,7 +6,7 @@ on:
       who-to-greet:
         description: Who to greet in the log
         required: true
-        default: 'World'
+        default: World
         type: string
 
 permissions:
diff --git a/.github/workflows/linter.yml b/.github/workflows/linter.yml
@@ -24,31 +24,28 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-      # Checkout the repository.
       - name: Checkout
         id: checkout
         uses: actions/checkout@v5
         with:
           fetch-depth: 0
 
-      # Setup Node.js using the version specified in `.node-version`.
       - name: Setup Node.js
         id: setup-node
         uses: actions/setup-node@v5
         with:
           node-version-file: .node-version
           cache: npm
 
-      # Install dependencies using `npm ci`.
       - name: Install Dependencies
         id: install
         run: npm ci
 
-      # Lint the codebase using the `super-linter/super-linter` action.
       - name: Lint Codebase
         id: super-linter
         uses: super-linter/super-linter/slim@v8
         env:
+          CHECKOV_FILE_NAME: .checkov.yml
           DEFAULT_BRANCH: main
           FILTER_REGEX_EXCLUDE: dist/**/*
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
