fix

.github/workflows/sast-horusec-vampi.yml

@@ -11,8 +11,13 @@ jobs:
         working-directory: ./targets/apps/VAmPI-master
     name: Horusec Scan
     steps:
-      - name: Run Horusec
-        id: run_horusec
-        uses: fike/[email protected]
-        with:
-          arguments: -p="./" --ignore="**/.vscode/**, **/*.env, **/.mypy_cache/**, **/tests/**"
+      # - name: Run Horusec
+      #   id: run_horusec
+      #   uses: fike/[email protected]
+      #   with:
+      #     arguments: -p="./" --ignore="**/.vscode/**, **/*.env, **/.mypy_cache/**, **/tests/**"
+        - name: Run Horusec
+          run: |
+            chmod +x ../../tools/horusec/horusec.sh
+            bash ../../tools/horusec/horusec.sh
+          shell: bash

.github/workflows/tools/horusec/horusec.sh

@@ -0,0 +1,39 @@
+mkdir reports
+
+#CRIA PASTA DE RELATÓRIO
+mkdir reports
+
+#CONFIGURAÇÃO DE PARÂMETROS DO HORUSEC
+#image="0xtiago/horusec-cli"
+image="horuszup/horusec-cli:v2.9.0-beta.3"
+severity_exception="LOW,UNKNOWN,INFO"
+report_type="json"
+report_path="reports/horusec_report.json"
+ignore="**/tmp/**,
+	      **/.vscode/**,\
+				**/.venv/**, \
+				**/.env/**, \
+				**/tests/**, \
+				**/test/**, \
+				**/test/, \
+				**/*.Tests/**, \
+				**/*.Test/**, \
+				**/test_*, \
+				**/appsettings.*.json, \
+				**/bin/Debug/*/appsettings.*.json, \
+				**/*.yml, \
+				**/bin/Debug/*/appsettings.json, \
+				**/*.sarif" ;\
+
+
+# EXECUTA CONTAINER DO HORUSEC REMOVENDO-O AO FIM DA EXECUÇÃO
+docker pull $image
+docker run --rm \
+	-v /var/run/docker.sock:/var/run/docker.sock \
+	-v $(pwd):/src/horusec $image horusec start \
+	-p /src/horusec -P $(pwd) \
+	-o="$report_type" -O=/src/horusec/$report_path \
+	-s=$severity_exception \
+	--ignore=$ignore \
+	--information-severity=true
+

targets/apps/VAmPI-master/trigger.txt

@@ -1 +1 @@
-trigger!
+trigger!!