Skip to content
shield

GitHub Action

RIPS Security Scan

v1 Latest version
Use latest version
shield

RIPS Security Scan

Performs a security scan (static code analysis) via your RIPS installation (On-Premises or SaaS)

Installation

Copy and paste the following snippet into your .yml file.

- name: RIPS Security Scan
  uses: rips/github-action-scan@v1
Learn more about this action in rips/github-action-scan
Choose a version

RIPS Security Scan

RIPS is a static code analysis solution to automatically find security issues in your code. This action performs a security scan of your project's code located at $GITHUB_WORKSPACE.

Usage

You can use the following configuration to start a new code analysis with RIPS and to add a security gate that fails vulnerable builds when, for example, more than 10 critical issues are detected.

steps:
- uses: actions/checkout@v1
  with:
    fetch-depth: 1
- uses: rips/github-action-scan@v1
  env:
    RIPS_BASE_URI: "https://api-3.ripstech.com"
    RIPS_EMAIL: ${{ secrets.RIPS_EMAIL }}
    RIPS_PASSWORD: ${{ secrets.RIPS_PASSWORD }}
  with:
    application-id: 923
    additional-parameters: -t critical:10 
You can’t perform that action at this time.