ada/agentguard-ci
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

putting s3 secrets in one object

Browse Source
This commit is contained in:
ada
2026-04-20 21:09:45 -06:00
parent 0099dc1e4a
commit 749afaebf7
5 changed files with 17 additions and 55 deletions
Download Patch File Download Diff File Expand all files Collapse all files
helm/templates/_scan-pulumi-crossguard.yaml
+2 -12
View File
@@ -4,23 +4,13 @@
parameters:
- name: working-dir
container:
image: {{ .Values.images.pulumiCrossguard | quote }}
image: {{ .Values.images.pulumiCrossguard }}
env:
- name: PULUMI_ACCESS_TOKEN
valueFrom:
secretKeyRef:
name: amp-security-pipeline-secrets
key: PULUMI_ACCESS_TOKEN
- name: AWS_ACCESS_KEY_ID
valueFrom:
secretKeyRef:
name: amp-security-pipeline-secrets
key: AWS_ACCESS_KEY_ID
- name: AWS_SECRET_ACCESS_KEY
valueFrom:
secretKeyRef:
name: amp-security-pipeline-secrets
key: AWS_SECRET_ACCESS_KEY
command:
- sh
- -c
@@ -29,7 +19,7 @@
set -eu
mkdir -p /workspace/reports
cd "/workspace/{{ `{{inputs.parameters.working-dir}}` }}"
pulumi preview --policy-pack "{{ .Values.pulumi.policyPackPath }}" > /workspace/reports/pulumi-crossguard.json 2>&1 || true
pulumi preview --policy-pack {{ .Values.pulumi.policyPackPath | quote }} > /workspace/reports/pulumi-crossguard.json 2>&1 || true
volumeMounts:
- name: workspace
mountPath: /workspace