Use this GitHub Action to sync from Cloud to Code so that you can trace your cloud resources and issues back to their code origins. Doing so can help you see which resource is the source of a detected risk, identify the owner, and clearly see what needs to be fixed.
| Parameter | Description | Default | Example |
|---|---|---|---|
| api-token (Required) | The API token used to communicate with Tenable Cloud Security. Generated in the Tenable Cloud Security Console during initial GitHub Actions setup. | ||
| api-url (Required) | The URL of the Tenable Cloud Security API. The API URL varies based on the region in which your Tenable Cloud Security environment is deployed. | https://us.app.ermetic.com/ |
|
| logs | Whether to print log messages to the standard workflow output. Log messages include information about the run process of the scanner and debug information, such as the number of files/lines scanned. Possible values: true false |
false |
true |
| path | The Terraform root module path that will be synced. Defaults to the repository root. | prod/,stg/ |
|
| silent | Whether to print sync result content to the standard workflow output. Sync result output contains information about files that have been traced back to their origins. Independent from logs. Possible values: true false |
false |
true |
| state-file-path | The Terraform state file path. | terraform.tfstate |
terraform.tfstate |