Skip to content
/ codescanalerts-action Public

Github action that scan potential vulnerabilities in code and stores output in json file

License

MIT license
0 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

MTES-MCT/codescanalerts-action

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits

.github/workflows

.github/workflows

 
 

dist

dist

 
 

src

src

 
 

.eslintignore

.eslintignore

 
 

.eslintrc.json

.eslintrc.json

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

action.yml

action.yml

 
 

package-lock.json

package-lock.json

 
 

package.json

package.json

 
 

Repository files navigation

codescanalerts-action

units-test

Github action that fetches Github code-scanning alerts and report results as JSON.

Usage

First, you need to store your repositories read-only token in repo secrets as CODESCANALERTS_TOKEN.

jobs:
  scan:
    runs-on: ubuntu-latest
    steps:
      - uses: "MTES-MCT/codescanalerts-action@main"
        with:
          token: ${{ secrets.CODESCANALERTS_TOKEN }}
          repositories: MTES-MCT/action-bidonvilles,MTES-MCT/partaj
          output: codescanalerts.json
          state: open

Hacking

To test locally, install act. Put secrets CODESCANALERTS_TOKEN=*** in .secrets file. Launch:

npm run all
act -j units # unit tests
act -j action # test Github action locally

About

Github action that scan potential vulnerabilities in code and stores output in json file

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages