-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathaction.yml
42 lines (40 loc) · 1.24 KB
/
action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
# action.yml
name: 'Fixinator Action'
author: 'Foundeo Inc.'
description: 'Scans your code for CFML / ColdFusion security issues.'
branding:
icon: 'check-square'
color: 'green'
inputs:
fixinator_api_key: # id of input
description: 'The fixinator api key'
required: true
default: ''
path:
description: 'The file, folder, or file globber pattern to scan'
default: '.'
confidence:
description: 'The confidence level: high, medium or low'
default: 'high'
severity:
description: 'Possible values are: low, medium or high. Filter by severity of the issues found.'
default: 'low'
ignorePaths:
description: 'A file globber pattern of paths to ignore from the scan.'
default: ''
failOnIssues:
description: 'Set to false if you do not want a failing scan to fail the workflow'
default: 'true'
runs:
using: 'docker'
image: 'docker://ghcr.io/foundeo/fixinator-docker/fixinator:latest'
env:
FIXINATOR_API_KEY: ${{ inputs.fixinator_api_key }}
entrypoint: /opt/box/box
args:
- fixinator
- path=${{ inputs.path }}
- confidence=${{ inputs.confidence }}
- severity=${{ inputs.severity }}
- ignorePaths=${{ inputs.ignorePaths }}
- failOnIssues=${{ inputs.failOnIssues }}