From 6b1c09b059f23ade7b70e4619be3071b97f1c27e Mon Sep 17 00:00:00 2001
From: skuyz <58785682+skuyz@users.noreply.github.com>
Date: Tue, 17 Oct 2023 13:13:01 +0200
Subject: [PATCH] Create checkov.yml

---
 .github/workflows/checkov.yml | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 .github/workflows/checkov.yml

diff --git a/.github/workflows/checkov.yml b/.github/workflows/checkov.yml
new file mode 100644
index 000000000..8cc848615
--- /dev/null
+++ b/.github/workflows/checkov.yml
@@ -0,0 +1,19 @@
+on: [push]
+jobs:
+  checkov-job:
+    runs-on: ubuntu-latest
+    name: checkov-action
+    steps:
+      - name: Checkout repo
+        uses: actions/checkout@master
+
+      - name: Run Checkov action
+        id: checkov
+        uses: bridgecrewio/checkov-action@master
+        with:
+          directory: .
+          soft_fail: true
+          download_external_modules: true
+          github_pat: ${{ secrets.GH_PAT }}
+        env:
+          GITHUB_OVERRIDE_URL: true  # optional: this can be used to instruct the action to override the global GIT config to inject the PAT to the URL