From 3bd836b78ea1ce315533027dfb69dec685cd5d49 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]" <github-actions[bot]@users.noreply.github.com>
Date: Mon, 1 May 2023 18:06:43 +0000
Subject: [PATCH 1/2] Bump kubescape version into v2.3.0

---
 Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index d9d999a..296868e 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,4 +1,4 @@
-FROM quay.io/kubescape/kubescape:v2.2.6
+FROM quay.io/kubescape/kubescape:v2.3.0
 
 # Kubescape uses root privileges for writing the results to a file
 USER root

From ece028814440312d4fbd9e7fec29522766a9de2c Mon Sep 17 00:00:00 2001
From: Hollow Man <hollowman@opensuse.org>
Date: Tue, 18 Apr 2023 15:28:01 +0300
Subject: [PATCH 2/2] Intergrate fix with comments

Signed-off-by: Hollow Man <hollowman@opensuse.org>
---
 .github/workflows/example-fix.yaml | 8 ++++++++
 README.md                          | 8 ++++++++
 2 files changed, 16 insertions(+)

diff --git a/.github/workflows/example-fix.yaml b/.github/workflows/example-fix.yaml
index 6d6b2ad..aed93c9 100644
--- a/.github/workflows/example-fix.yaml
+++ b/.github/workflows/example-fix.yaml
@@ -15,6 +15,7 @@ jobs:
 
     steps:
     - uses: actions/checkout@v3
+      if: github.event_name != 'pull_request_target'
       with:
         fetch-depth: 0
     - uses: actions/checkout@v3
@@ -32,6 +33,13 @@ jobs:
         files: ${{ steps.changed-files.outputs.all_changed_files }}
         fixFiles: true
         format: "sarif"
+    # Use HollowMan6/sarif4reviewdog to support SARIF format for reviewdog
+    - name: PR Suggester by SARIF file
+      if: github.event_name == 'pull_request_target'
+      uses: HollowMan6/sarif4reviewdog@v1.0.0
+      with:
+        file: 'results.sarif'
+        level: warning
     - uses: peter-evans/create-pull-request@v4
       # Remember to allow GitHub Actions to create and approve pull requests
       # https://docs.github.com/en/repositories/managing-your-repositorys-settings-and-features/enabling-features-for-your-repository/managing-github-actions-settings-for-a-repository#preventing-github-actions-from-creating-or-approving-pull-requests
diff --git a/README.md b/README.md
index 4712d65..b2768d6 100644
--- a/README.md
+++ b/README.md
@@ -60,6 +60,7 @@ jobs:
 
     steps:
     - uses: actions/checkout@v3
+      if: github.event_name != 'pull_request_target'
       with:
         fetch-depth: 0
     - uses: actions/checkout@v3
@@ -77,6 +78,13 @@ jobs:
         files: ${{ steps.changed-files.outputs.all_changed_files }}
         fixFiles: true
         format: "sarif"
+    # # Use HollowMan6/sarif4reviewdog to support SARIF format for reviewdog
+    # - name: PR Suggester by SARIF file
+    #   if: github.event_name == 'pull_request_target'
+    #   uses: HollowMan6/sarif4reviewdog@v1.0.0
+    #   with:
+    #     file: 'results.sarif'
+    #     level: warning
     - uses: peter-evans/create-pull-request@v4
       # Remember to allow GitHub Actions to create and approve pull requests
       # https://docs.github.com/en/repositories/managing-your-repositorys-settings-and-features/enabling-features-for-your-repository/managing-github-actions-settings-for-a-repository#preventing-github-actions-from-creating-or-approving-pull-requests