Update and rename veracode-container-security.yml to veracode-iac-sec…

…rets-scan.yml

.github/workflows/veracode-container-security.yml → .github/workflows/veracode-iac-secrets-scan.yml

@@ -1,10 +1,10 @@
-name: Veracode Container Security EA
+name: Veracode IaC/Secrets Scanning
 
-run-name: Container Security - ${{ github.event.client_payload.repository.name }}
+run-name: Veracode IaC/Secrets Scanning - ${{ github.event.client_payload.repository.name }}
 
 on:
   repository_dispatch:
-    types: [veracode-container-security-scan]
+    types: [veracode-iac-secrets-scan]
 
 jobs:
   register:
@@ -21,21 +21,25 @@ jobs:
         event_type: ${{ github.event.client_payload.event_type }}
         enforce: true
 
-  veracode-container-security:
+  veracode-iac-secrets-scan:
     needs: [register]
     runs-on: ubuntu-latest
-    name: Veracode Container Security
+    name: Veracode IaC/Secrets Scanning
 
     steps:
       - uses: actions/checkout@v3
         with:
           repository: ${{ github.event.client_payload.repository.full_name }}
           ref: ${{ github.event.client_payload.sha }}
           token: ${{ github.event.client_payload.token }}
-      - name: Run Veracode SCA
-        env:
-          SRCCLR_API_TOKEN: ${{ secrets.SRCCLR_API_TOKEN }}
-        uses: veracode/veracode-sca@v2.1.6
+      - name: Run Veracode IaC/Secrets Scanning
+        uses: veracode/container_iac_secrets_scanning@v1.0.0
         with:
-          github_token: ${{ secrets.GITHUB_TOKEN }}
-          create-issues: false  
+            vid: ${{ secrets.API_ID }}
+            vkey: ${{ secrets.API_KEY }}
+            command: "scan" 
+            type: "directory"
+            source: "./"
+            format: "json"
+            debug: false
+            fail_build: true