fix(custom-gitguardian): error invalid token header hyperledger-cacti…

…#2379

fixes: hyperledger-cacti#2379

related to: hyperledger-cacti#2313 and hyperledger-cacti#1996

This fixes the Invalid token header, no credentials provided error
of the custom gitguardian workflow.

Signed-off-by: ruzell22 <[email protected]>

.gitguardian.yaml

@@ -7,7 +7,7 @@ exit-zero: false # default: false
 
 verbose: false # default: false
 
-instance: https://api.gitguardian.com/
+instance: https://dashboard.gitguardian.com/
 
 # Maximum commits to scan in a hook.
 max-commits-for-hook: 50 # default: 50

.github/workflows/gg-shield-action.yaml

@@ -10,25 +10,28 @@ on:
     # Publish `v1.2.3` tags as releases.
     tags:
       - v*
+  workflow_call:
+    secrets:
+      GITGUARDIAN_API_KEY:
+        description: 'API key for GitGuardian'
+        required: true
 
 jobs:
   scanning:
     name: GitGuardian scan
     runs-on: ubuntu-20.04
     steps:
       - name: Checkout
-        uses: actions/checkout@v2.4.0
+        uses: actions/checkout@v3.5.1
         with:
           fetch-depth: 0 # fetch all history so multiple commits can be scanned
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
       - name: GitGuardian scan
-        uses: GitGuardian/[email protected].4
+        uses: GitGuardian/[email protected].5
         with:
           args: --show-secrets --exit-zero --all-policies --verbose
+          GITGUARDIAN_API_KEY: ${{ secrets.GITGUARDIAN_API_KEY }}
         env:
           GITHUB_PUSH_BEFORE_SHA: ${{ github.event.before }}
           GITHUB_PUSH_BASE_SHA: ${{ github.event.base }}
           GITHUB_PULL_BASE_SHA: ${{ github.event.pull_request.base.sha }}
-          GITHUB_DEFAULT_BRANCH: main
-          GITGUARDIAN_API_KEY: ${{ secrets.GITGUARDIAN_API_KEY }}
+          GITHUB_DEFAULT_BRANCH: ${{ github.event.repository.default_branch }}