feat(ci): update KICS.yaml to fit current application

DominikPinsel · Jul 14, 2023 · af214cd · af214cd
1 parent 84479a8
commit af214cd
Showing 1 changed file with 9 additions and 9 deletions.
diff --git a/.github/workflows/kics.yml b/.github/workflows/kics.yml
@@ -20,13 +20,14 @@ name: "KICS"
 
 on:
   push:
-    branches: [main, master, develop]
-  # pull_request:
+    branches: [main, development]
+  pull_request:
   # The branches below must be a subset of the branches above
-  # branches: [main, master]
-  # paths-ignore:
-  #   - "**/*.md"
-  #   - "**/*.txt"
+    branches: [main, development]
+    paths:
+      - "charts/managed-identity-wallet/**"
+      - "dev-assets/docker-environment/**"
+      - "docs/**"
   schedule:
     - cron: "0 0 * * *"
 
@@ -43,10 +44,10 @@ jobs:
       - uses: actions/checkout@v3
 
       - name: KICS scan
-        uses: checkmarx/kics-github-action@master
+        uses: checkmarx/kics-github-action@v1.7.0
         with:
           # Scanning directory .
-          path: "."
+          path: "charts/managed-identity-wallet,dev-assets/docker-environment,docs"
           # Fail on HIGH severity results
           fail_on: high
           # Disable secrets detection - we use GitGuardian
@@ -63,7 +64,6 @@ jobs:
           # GITHUB_TOKEN enables this github action to access github API and post comments in a pull request
           # token: ${{ secrets.GITHUB_TOKEN }}
           # enable_comments: true
-          exclude_paths: "docs/openapi_v330.json"
 
       # Upload findings to GitHub Advanced Security Dashboard
       - name: Upload SARIF file for GitHub Advanced Security Dashboard