feat: add in use flag

Signed-off-by: Igor Eulalio <igor.eulalio@sysdig.com>

action.yml

@@ -83,6 +83,11 @@ inputs:
     description: 'Path to the IaC files to scan.'
     required: false
     default: "./"
+  in-use-file-path:
+    description: 'Path to the in-use file.'
+    required: false
+    default: "./in_use.txt"
+
 outputs:
   scanReport:
     description: Path to a JSON file containing the report results, failed evaluation gates, and found vulnerabilities.

src/action.ts

@@ -27,6 +27,7 @@ interface ActionInputParameters {
   recursive: boolean;
   minimumSeverity: string;
   iacScanPath: string;
+  inUseFilePath: string;
 }
 
 export class ActionInputs {
@@ -77,6 +78,7 @@ export class ActionInputs {
       recursive: core.getInput('recursive') == 'true',
       minimumSeverity: core.getInput('minimum-severity'),
       iacScanPath: core.getInput('iac-scan-path') || './',
+      inUseFilePath: core.getInput('in-use-file-path') || './in-use.txt',
     };
 
     const overridenParams = {
@@ -128,6 +130,10 @@ export class ActionInputs {
     return this.params.overridePullString
   }
 
+  get inUseFilePath() {
+    return this.params.inUseFilePath
+  }
+
   private static validateInputs(params: ActionInputParameters) {
     if (!params.standalone && !params.sysdigSecureToken) {
       core.setFailed("Sysdig Secure Token is required for standard execution, please set your token or remove the standalone input.");
@@ -196,6 +202,10 @@ export class ActionInputs {
       flags += ` ${this.params.extraParameters}`;
     }
 
+    if (this.params.inUseFilePath) {
+      flags += ` --in-use-packages-file=${this.params.inUseFilePath}`;
+    }
+
     if (this.params.mode == ScanMode.iac) {
       flags += ` --iac`;