Add checkov for IaC and SCA and update README.md

bcgov / startup-sample-project-aws-serverless-TFC

Lambda serverless app meant to accelerate teams onboarding to the BC Gov SEA AWS space.

Apache License 2.0

2 stars 25 forks source link

Add checkov for IaC and SCA and update README.md #16

Closed bruce-wh-li closed 1 year ago

bruce-wh-li commented 2 years ago

File Changed and Added Added : .github/workflows/Checkov.yml Changed: README.md

ActionAnalytics commented 2 years ago

Missing a shared understanding of purpose, value prop, and the UX experience of a newbie team running their pipeline with Checkov for the first time. Does it result in a test config that is a pass or does it create a wall of error failures? We don't know, that's why we were leaving it as a research spike not a push to prod