forked from synopsys-sig/synopsys-action
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathaction.yml
139 lines (139 loc) · 4.89 KB
/
action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
name: 'Synopsys Action'
branding:
icon: 'shield'
color: 'purple'
description: 'Find and fix software weaknesses and vulnerabilities during development, before you ship or deploy!'
author: 'Synopsys Inc'
inputs:
coverity_url:
description: 'Coverity url'
required: false
coverity_user:
description: 'Coverity user name'
required: false
coverity_passphrase:
description: 'Coverity password'
required: false
coverity_project_name:
description: 'Coverity Project Name'
required: false
coverity_stream_name:
description: 'Coverity Stream Name'
required: false
coverity_install_directory:
description: 'Coverity Install Directory'
required: false
coverity_policy_view:
description: 'Coverity Policy View'
required: false
coverity_repository_name:
description: 'Repository Name'
required: false
coverity_branch_name:
description: 'Branch name'
required: false
coverity_local:
description: 'Flag to enable/disable to run coverity scan locally.'
required: false
coverity_version:
description: 'If provided, Synopsys Action will download specific version of coverity thin client to use.'
required: false
bridge_coverity_version:
description: 'If provided, Synopsys Action will download specific version of coverity thin client to use.'
required: false
polaris_access_token:
description: 'Polaris Access Token'
required: false
polaris_application_name:
description: 'Polaris Application Name'
required: false
polaris_project_name:
description: 'Polaris Project Name'
required: false
polaris_assessment_types:
description: 'Polaris Assess Types SAST/SCA'
required: false
polaris_server_url:
description: 'Polaris Server URL'
required: false
polaris_prComment_enabled:
description: 'Flag to enable pull request comments based on Polaris scan result'
required: false
polaris_prComment_severities:
description: 'List of severities for which the PR Comments should be created'
required: false
polaris_triage:
description: 'Polaris Triage'
required: false
polaris_branch_name:
description: 'Polaris branch name'
required: false
polaris_branch_parent_name:
description: 'Polaris parent branch name'
required: false
synopsys_bridge_install_directory:
description: 'Synopsys Bridge Install Directory'
required: false
synopsys_bridge_download_url:
description: 'URL to download bridge from'
required: false
blackduck_url:
description: 'URL for blackduck hub'
required: false
blackduck_token:
description: 'API token to access blackduck'
required: false
blackduck_install_directory:
description: 'Directory to find or install detect'
required: false
blackduck_scan_full:
description: 'Scan Mode. (true for intelligent scan & false for rapid scan)'
required: false
blackduck_scan_failure_severities:
description: 'If provided, Blackduck will break the build if any issues produced match one of the given severities'
required: false
blackduck_automation_fixpr:
description: 'If set as true, separate Fix PRs will be created if vulnerability is found after scan'
required: false
blackduck_fixpr_enabled:
description: 'Flag to enable/disable the automatic fix pull request creations for Black Duck'
required: false
blackduck_fixpr_maxCount:
description: 'Maximum number of Pull Requests to be created that violate policies'
required: false
blackduck_fixpr_filter_severities:
description: 'If provided, Fix PRs will be created only for given severities'
required: false
blackduck_fixpr_useUpgradeGuidance:
description: 'Flag to enable long term upgrade guidance'
required: false
synopsys_bridge_download_version:
description: 'If provided, Synopsys-action will configure the version of Bridge'
required: false
blackduck_prComment_enabled:
description: 'Flag to enable pull request comments for new issues found in the Black Duck scan'
required: false
coverity_prComment_enabled:
description: 'Flag to enable pull request comments for new issues found in the Coverity scan'
required: false
github_host_url:
description: 'Host URL for Github'
required: false
github_token:
description: 'Github token to be used for git related rest operation'
required: false
include_diagnostics:
description: 'To include diagnostics info and export as zip'
required: false
diagnostics_retention_days:
description: 'Number of days to keep the diagnostics files downloadable'
required: false
bridge_network_airgap:
description: 'If provided, Synopsys Action will be using local network to download and execute bridge .'
required: false
network_airgap:
description: 'If provided, Synopsys Action will be using local network to download and execute bridge .'
required: false
runs:
using: 'node16'
main: 'dist/index.js'