From 2d7e7dd04041411bf81005cf3df40a9a345ca45d Mon Sep 17 00:00:00 2001
From: Tom Riat <tom@riat.dev>
Date: Thu, 30 Jul 2020 08:31:12 +0200
Subject: [PATCH 1/2] feat: add CI build on PR

---
 .github/workflows/CI.yml | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/.github/workflows/CI.yml b/.github/workflows/CI.yml
index 5041697..ccdf1f9 100644
--- a/.github/workflows/CI.yml
+++ b/.github/workflows/CI.yml
@@ -10,5 +10,15 @@ jobs:
     runs-on: ubuntu-latest
     steps:
     - uses: actions/checkout@v2
+    - run: npm ci
+    - uses: nelonoel/branch-name@v1
     - name: ShellCheck
       uses: ludeeus/action-shellcheck@0.4.1
+    - name: Terraform security scan
+      uses: triat/terraform-security-scan@$BRANCH_NAME
+      with:
+        tfsec_actions_comment: false
+        tfsec_actions_working_dir: "test/"
+        tfsec_exclude: "AWS018,AWS006,AWS004,AWS003,AZU003"
+      env:
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

From b7088c7f4baa7f7eb9b487919b305bbcfa567056 Mon Sep 17 00:00:00 2001
From: Tom Riat <tom@riat.dev>
Date: Thu, 30 Jul 2020 08:35:04 +0200
Subject: [PATCH 2/2] test with github ref

---
 .github/workflows/CI.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/CI.yml b/.github/workflows/CI.yml
index ccdf1f9..fa95b07 100644
--- a/.github/workflows/CI.yml
+++ b/.github/workflows/CI.yml
@@ -15,7 +15,7 @@ jobs:
     - name: ShellCheck
       uses: ludeeus/action-shellcheck@0.4.1
     - name: Terraform security scan
-      uses: triat/terraform-security-scan@$BRANCH_NAME
+      uses: triat/terraform-security-scan@8-run-pr-content-to-build-action
       with:
         tfsec_actions_comment: false
         tfsec_actions_working_dir: "test/"