-
Notifications
You must be signed in to change notification settings - Fork 4
/
action.yaml
47 lines (47 loc) · 1.47 KB
/
action.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
name: "Mondoo GitHub Repository Action"
description: "Scan GitHub repository for misconfigurations with Mondoo"
branding:
icon: "shield"
color: "purple"
inputs:
repository:
description: GitHub Repository
required: true
log-level:
description: >-
Sets the log level: error, warn, info, debug, trace (default "info")
default: info
required: false
output:
description: >-
Set the output format for scan results: compact, yaml, json, junit, csv, summary, full, report (default "compact")
default: compact
required: false
score-threshold:
description: >-
Sets the score threshold for scans. Scores that fall below the threshold will exit 1. (default "0" - job continues regardless of the score returned by a scan).
default: "0"
required: false
is-cicd:
description: "Automatically detects the GitHub Action Runs and report results into the CI/CD view"
default: true
service-account-credentials:
description: "Base64 encoded service account credentials used to authenticate with Mondoo Platform"
required: false
runs:
using: "docker"
image: "docker://mondoo/cnspec:11"
args:
- scan
- github
- repo
- ${{ inputs.repository }}
- --output
- ${{ inputs.output }}
- --score-threshold
- ${{ inputs.score-threshold }}
- --log-level
- ${{ inputs.log-level }}
- --detect-cicd=${{ inputs.is-cicd }}
env:
MONDOO_CONFIG_BASE64: ${{ inputs.service-account-credentials }}