add wiz scan on create PR to 3.0.0 (SWG-14342)

Author: ewaostrowska

.github/workflows/maven-master-pulls.yml

@@ -59,30 +59,6 @@ jobs:
       - name: Build with Maven
         run: mvn -B -U clean verify -DskipTests -Dmaven.test.skip=true -Dmaven.site.skip=true -Dmaven.javadoc.skip=true -Psamples-java8 --file pom.xml
 
-  scan-with-wiz:
-    name: Trigger Wiz Scanning
-    runs-on: ubuntu-latest
-
-    needs: [ build ]
-    if: success()
-
-    steps:
-      - name: Login to Docker Hub
-        uses: docker/login-action@v3
-        with:
-          username: ${{ secrets.DOCKERHUB_SB_USERNAME }}
-          password: ${{ secrets.DOCKERHUB_SB_PASSWORD }}
-
-      - name: Checkout code
-        uses: actions/checkout@v3
-
-      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v3
-
-      - name: Build Docker image
-        run: |
-          docker buildx build --load -t swaggerapi/swagger-codegen-cli:latest .
-
       - name: Download Wiz CLI
         run: curl -o wizcli https://downloads.wiz.io/wizcli/latest/wizcli-linux-amd64 && chmod +x wizcli
 
@@ -92,10 +68,13 @@ jobs:
           WIZ_CLIENT_ID: ${{ secrets.WIZ_CLIENT_ID }}
           WIZ_CLIENT_SECRET: ${{ secrets.WIZ_CLIENT_SECRET }}
 
-      - name: Run wiz-cli docker image scan
+      - name: Scan Maven build directory with Wiz
         run: |
-          ./wizcli docker scan --image $TAG --policy "$POLICY"  > /dev/null 2>&1
-          ./wizcli docker tag --image $TAG  > /dev/null 2>&1
+          ./wizcli dir scan \
+            --path . \
+            --policy "$POLICY" \
+            --tag repo="${{ github.repository }}" \
+            --tag commit="${{ github.sha }}" \
+            --tag java="${{ matrix.java }}"
         env:
-          TAG: swaggerapi/swagger-codegen-cli:latest
-          POLICY: "SmartBear default vulnerabilities policy"
+          POLICY: "SmartBear default vulnerabilities policy"