From a23f8368c19823d5b58e69ecad40f8087fc77bc2 Mon Sep 17 00:00:00 2001
From: tammy-baylis-swi <tammy.baylis@solarwinds.com>
Date: Fri, 24 Jan 2025 14:39:49 -0800
Subject: [PATCH] Use action instead of workflow reuse

---
 ...ild_publish_image_autoinstrumentation.yaml | 30 ++++++++++++-------
 1 file changed, 20 insertions(+), 10 deletions(-)

diff --git a/.github/workflows/build_publish_image_autoinstrumentation.yaml b/.github/workflows/build_publish_image_autoinstrumentation.yaml
index fe49439f..96ad3d3f 100644
--- a/.github/workflows/build_publish_image_autoinstrumentation.yaml
+++ b/.github/workflows/build_publish_image_autoinstrumentation.yaml
@@ -53,13 +53,18 @@ jobs:
       - name: Set artifact name
         run: echo "artifact-name=${{ github.repository_owner }}/autoinstrumentation-python:${{ env.VERSION }}" >> $GITHUB_ENV
 
-      - name: RL scan image
-        uses: ./.github/workflows/reversinglabs_scan.yaml
+      - name: RL scan image (rl-submit-only)
+        env:
+          RLPORTAL_ACCESS_TOKEN: ${{ secrets.RLPORTAL_ACCESS_TOKEN }}
+        uses: reversinglabs/gh-action-rl-scanner-cloud-only@v1
         with:
-          artifact-name: ${{ env.artifact-name }}
-          package-name: apm-python-autoinstrumentation-image-ghcr
-          version: ${{ env.VERSION }}
+          artifact-to-scan: ${{ env.artifact-name }}
           rl-submit-only: true
+          rl-verbose: true
+          rl-portal-server: solarwinds
+          rl-portal-org: SolarWinds
+          rl-portal-group: "SaaS-Agents-SWO"
+          rl-package-url: apm-python/apm-python-autoinstrumentation-image-ghcr@${{ env.VERSION }}
 
       - name: Push image
         uses: docker/build-push-action@v6
@@ -100,13 +105,18 @@ jobs:
       - name: Set artifact name
         run: echo "artifact-name=ghcr.io/${{ github.repository_owner }}/autoinstrumentation-python:${{ env.VERSION }}" >> $GITHUB_ENV
 
-      - name: RL scan image
-        uses: ./.github/workflows/reversinglabs_scan.yaml
+      - name: RL scan image (rl-submit-only)
+        env:
+          RLPORTAL_ACCESS_TOKEN: ${{ secrets.RLPORTAL_ACCESS_TOKEN }}
+        uses: reversinglabs/gh-action-rl-scanner-cloud-only@v1
         with:
-          artifact-name: ${{ env.artifact-name }}
-          package-name: apm-python-autoinstrumentation-image-ghcr
-          version: ${{ env.VERSION }}
+          artifact-to-scan: ${{ env.artifact-name }}
           rl-submit-only: true
+          rl-verbose: true
+          rl-portal-server: solarwinds
+          rl-portal-org: SolarWinds
+          rl-portal-group: "SaaS-Agents-SWO"
+          rl-package-url: apm-python/apm-python-autoinstrumentation-image-ghcr@${{ env.VERSION }}
 
       - name: Push image
         uses: docker/build-push-action@v6