-
Notifications
You must be signed in to change notification settings - Fork 5
/
action.yml
38 lines (38 loc) · 1.11 KB
/
action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
name: 'vanagon_snyk_scan_action'
description: 'Scans vanagon builds for ruby dependencies and untrusted repos'
inputs:
snykToken:
description: 'snyk access token'
required: true
snykOrg:
description: 'snyk org to write results to'
required: true
branch:
description: 'branch name to prepend to the snyk project name'
required: false
noMonitor:
description: 'allows skipping the snyk monitor step'
required: false
skipProjects:
description: 'A comma separated list of projects to skip'
required: false
skipPlatforms:
description: 'A comma separated list of platforms to skip'
required: false
sshKey:
description: 'a base64 encoded SSH key to install on the container'
required: false
sshKeyName:
description: 'Name of the SSH key. Written to /root/.ssh/<sshKeyName>'
required: false
svDebug:
description: 'turn on debug logging'
required: false
outputs:
vulns: # id of output
description: 'Array of vulnerable packages'
# licenses: # id of output
# description: 'Array of license issues'
runs:
using: 'docker'
image: 'Dockerfile'