Jay Simoni

@neefrehman ``` plan=$(cat $GITHUB_ENV echo "${plan:0:65536}" >> $GITHUB_ENV echo "EOF" >> $GITHUB_ENV ``` and then read the value as: ``` commenter_input: ${{ env.PLAN }} ```

@rotemavni, I've changed the AWS Account ID, but otherwise this is the json contents. `{"format_version":"1.0","terraform_version":"1.1.3","planned_values":{"root_module":{"resources":[{"address":"aws_iam_policy.policy","mode":"managed","type":"aws_iam_policy","name":"policy","provider_name":"registry.terraform.io/hashicorp/aws","schema_version":0,"values":{"arn":"arn:aws:iam::475565242001:policy/my-sample-policy","description":"My sample policy","id":"arn:aws:iam::475565242001:policy/my-sample-policy","name":"my-sample-policy","name_prefix":null,"path":"/","policy":"{\r\n \"Version\": \"2012-10-17\",\r\n \"Statement\": [\r\n {\r\n \"Action\": [\r\n \"s3:ListAllMyBuckets\"\r\n ],\r\n \"Effect\": \"Allow\",\r\n \"Resource\": \"*\"\r\n...

@rotemavni no, it's never worked & I get the same error using `bridgecrewio/[email protected]`

@rotemavni, I have run ls & cat (to get the contents). The file is where it's expected...the json state file is generated by the following terragrunt hook: ``` terraform {...

@rotemavni here are the full execution logs from GHA: ``` 2022-01-11 14:57:56,561 [MainThread ] [DEBUG] Checkov version: 2.0.705 2022-01-11 14:57:56,561 [MainThread ] [DEBUG] Python executable: /usr/local/bin/python 2022-01-11 14:57:56,561 [MainThread ]...

@rotemavni any thoughts here? we've confirmed that we can also run checkov against json plan files that we've checked in. so it's just an issue with transient files. we've also...

ubuntu-latest

yes, the plans were created on ubuntu-latest in the same GHA. 

@nimrodkor @rotemavni any thoughts on this one?

@peterwoodworth, yes that's correct.