-
Notifications
You must be signed in to change notification settings - Fork 14
Expand file tree
/
Copy pathaction.yaml
More file actions
68 lines (68 loc) · 2.64 KB
/
action.yaml
File metadata and controls
68 lines (68 loc) · 2.64 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
# action.yml
name: "42Crunch REST API Static Security Testing"
description: "The REST API Static Security Testing action adds an automatic static application security testing (SAST) to your workflows"
inputs:
api-token:
description: "The API token to access 42Crunch Platform. Follow hese steps to configure API_TOKEN https://docs.42crunch.com/latest/content/tasks/integrate_github_actions.htm"
required: false
min-score:
description: "Minimum score for OpenAPI files."
required: false
default: "75"
platform-url:
description: "42Crunch platform URL"
required: false
default: "https://us.42crunch.cloud"
log-level:
description: "Log level, one of: FATAL, ERROR, WARN, INFO, DEBUG"
required: false
default: "INFO"
share-everyone:
description: "Share new API collections with everyone, one of: OFF, READ_ONLY, READ_WRITE"
required: false
default: "OFF"
github-token:
description: "GitHub token for uploading results to Github Code Scanning"
required: false
default: ${{ github.token }}
upload-to-code-scanning:
description: "Upload results to Github Code Scanning"
required: false
default: "false"
ignore-failures:
description: "If set to 'true', disables all local failure conditions (like minimum score) and fails execution only if the criteria defined in SQGs are not met."
required: false
default: "false"
root-directory:
description: "Set the root directory for the plugin"
required: false
default-collection-name:
description: "Change the default collection name"
required: false
json-report:
description: "Writes Audit report in JSON format to a specified file"
required: false
api-tags:
description: "List of tags to be set on the newly created APIs. Format \"category1:name1 category2:name2\", optional."
required: false
ignore-network-errors:
description: "If set to 'true', forces to complete execution successfully even if a network error has occurred (such as a failure to connect to 4unch Platform, etc)."
required: false
default: "false"
skip-local-checks:
description: "If set to 'true', forces to complete execution successfully even if the failures conditions (like min-score or SQG criteria) you have set are met."
required: false
default: "false"
sarif-report:
description: "Writes SARIF report to a specified file"
required: false
default: ""
audit-timeout:
description: "Set the maximum timeout (in seconds) for the audit report. Fail if the result isn't ready within that interval."
required: false
branding:
icon: "eye"
color: "purple"
runs:
using: "docker"
image: "Dockerfile"