From 9d0fe0ae3a464e5a4c88d41f408d440f29bf2556 Mon Sep 17 00:00:00 2001
From: Teodor-Ioan Baltoi <teodorioan.baltoi@lacework.net>
Date: Tue, 7 Apr 2026 16:55:18 +0100
Subject: [PATCH 1/2] Enable IaC scanning

---
 src/index.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/index.ts b/src/index.ts
index 0dce8f2e..b3a18180 100644
--- a/src/index.ts
+++ b/src/index.ts
@@ -11,7 +11,7 @@ import { callCommand, runCodesec, getOptionalEnvVariable, readMarkdownFile } fro
 
 // Global scanner toggles - set to false to disable a scanner globally
 const enableScaRunning = true
-const enableIacRunning = false // TODO: change to true when ready
+const enableIacRunning = true
 
 async function runAnalysis() {
   const target = getInput('target')

From e906c8b10e2ec9c9a6e50714e4e84cf71d1b06f2 Mon Sep 17 00:00:00 2001
From: Teodor-Ioan Baltoi <teodorioan.baltoi@lacework.net>
Date: Wed, 8 Apr 2026 14:17:42 +0100
Subject: [PATCH 2/2] pass the git branch as env var to the docker image

---
 src/util.ts | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/util.ts b/src/util.ts
index de641493..2153fbe1 100644
--- a/src/util.ts
+++ b/src/util.ts
@@ -16,6 +16,7 @@ function gatherGitHubEnvVars(): string[] {
     }
   }
   envVars.push('CI_PLATFORM=github')
+  envVars.push(`LW_CODESEC_GIT_BRANCH=${process.env['LW_CODESEC_GIT_BRANCH'] || ''}`)
   return envVars
 }