From 0d39ac96fc2143402ea8b3d1bd89fe2cb27ebe6b Mon Sep 17 00:00:00 2001
From: Rocket ! <rocketnova@users.noreply.github.com>
Date: Mon, 24 Apr 2023 11:36:56 -0700
Subject: [PATCH 1/2] Pin to latest checkov release version v2.3.194.

See https://github.com/bridgecrewio/checkov/releases/tag/2.3.194
---
 .github/workflows/ci-infra.yml | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/ci-infra.yml b/.github/workflows/ci-infra.yml
index 37731978..82bdb3ee 100644
--- a/.github/workflows/ci-infra.yml
+++ b/.github/workflows/ci-infra.yml
@@ -46,7 +46,11 @@ jobs:
         with:
           python-version: "3.10"
       - name: Run Checkov check
-        uses: bridgecrewio/checkov-action@master
+        # Pins to checkov-action v12.2296.0
+        # which in turn pins to checkov v2.3.194
+        # which is the latest release version at time of commit:
+        # - https://github.com/bridgecrewio/checkov/releases/tag/2.3.194
+        uses: bridgecrewio/checkov-action@12.2296.0
         with:
           directory: infra
           framework: terraform

From e9a5f3fe565bbb3c0c3f889172c8a2cba64a7cf4 Mon Sep 17 00:00:00 2001
From: Rocket ! <rocketnova@users.noreply.github.com>
Date: Mon, 24 Apr 2023 11:39:24 -0700
Subject: [PATCH 2/2] Fix typo.

---
 .github/workflows/ci-infra.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci-infra.yml b/.github/workflows/ci-infra.yml
index 82bdb3ee..584f5198 100644
--- a/.github/workflows/ci-infra.yml
+++ b/.github/workflows/ci-infra.yml
@@ -50,7 +50,7 @@ jobs:
         # which in turn pins to checkov v2.3.194
         # which is the latest release version at time of commit:
         # - https://github.com/bridgecrewio/checkov/releases/tag/2.3.194
-        uses: bridgecrewio/checkov-action@12.2296.0
+        uses: bridgecrewio/checkov-action@v12.2296.0
         with:
           directory: infra
           framework: terraform