From 948927a27fd693c639a2a2a8283851fd82cfad10 Mon Sep 17 00:00:00 2001
From: Christer Vaskinn <christer.vaskinn@entur.org>
Date: Fri, 11 Oct 2024 13:37:47 +0200
Subject: [PATCH 1/2] fix: properly access token in docker scan

---
 .github/workflows/docker-scan.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/docker-scan.yml b/.github/workflows/docker-scan.yml
index 12fb5ac..19e8c68 100644
--- a/.github/workflows/docker-scan.yml
+++ b/.github/workflows/docker-scan.yml
@@ -43,6 +43,8 @@ jobs:
           with:
             name: ${{ env.GHA_SECURITY_DOCKER_SCAN_IMAGE_ARTIFACT }}
         - name: "Check if allowlist file exists"
+          env:
+            GHA_SECURITY_CODE_SCAN_EXTERNAL_REPOSITORY_TOKEN: ${{ secrets.external_repository_token }}
           run: |
             python -c "
             import os

From 00e62f2bcb73b8810ac8929d2023d04d87cb11a5 Mon Sep 17 00:00:00 2001
From: Christer Vaskinn <christer.vaskinn@entur.org>
Date: Fri, 11 Oct 2024 15:43:50 +0200
Subject: [PATCH 2/2] chore: corrected typo in env variable

---
 .github/workflows/docker-scan.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/docker-scan.yml b/.github/workflows/docker-scan.yml
index 19e8c68..7e1c20d 100644
--- a/.github/workflows/docker-scan.yml
+++ b/.github/workflows/docker-scan.yml
@@ -44,7 +44,7 @@ jobs:
             name: ${{ env.GHA_SECURITY_DOCKER_SCAN_IMAGE_ARTIFACT }}
         - name: "Check if allowlist file exists"
           env:
-            GHA_SECURITY_CODE_SCAN_EXTERNAL_REPOSITORY_TOKEN: ${{ secrets.external_repository_token }}
+            GHA_SECURITY_DOCKER_SCAN_EXTERNAL_REPOSITORY_TOKEN: ${{ secrets.external_repository_token }}
           run: |
             python -c "
             import os