Code Monkey home page Code Monkey logo

sourcehawk-scan-github-action's Introduction

Sourcehawk Scan Github Action

Latest Version Build Status Sourcehawk Scan

This action runs a sourcehawk scan on the repository source code.

Inputs

repository-root

The root of the source code to scan

Default: . (root of the repository)

config-file

The configuration file path (relative path, absolute path, or even URL)

Default: sourcehawk.yml

output-format

The output format of the scan

Default: TEXT

Valid Values: TEXT, JSON, MARKDOWN

output-file

The configuration file path

Default: sourcehawk-scan-results.txt

fail-on-warnings

Whether or not to fail the scan if only warnings exist

Default: false

fail-build

Whether or not to fail the build if the scan fails

Default: true

Outputs

scan-passed

Boolean value determining if the scan has passed - true if the passed, false otherwise

Example usage

Basic

The below example accepts all the defaults

uses: optum/sourcehawk-scan-github-action@v1

Fail if Warnings Found

Scan will be considered a failure, if warnings are found

uses: optum/sourcehawk-scan-github-action@v1
  with:
    fail-on-warnings: true

Custom Configuration File

Provide the location to a configuration file in a custom path

uses: optum/sourcehawk-scan-github-action@v1
  with:
    config-file: .sourcehawk/config.yml

JSON Output Format

Output the scan results in JSON format

uses: optum/sourcehawk-scan-github-action@v1
  with:
    output-format: JSON
    output-file: sourcehawk-scan-results.json

Example Workflow

Below is an example workflow to run a scan on pull requests. The workflow checks out the source code, runs the scan, prints that the scan passed if it was successful, and then archives the scan results file.

name: Build
on:
  pull_request:
    branches:
      - main
jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v2
      - name: Run Sourcehawk Scan
        id: sourcehawk
        uses: optum/sourcehawk-scan-github-action@v1
        with:
          output-format: JSON
          output-file: sourcehawk-scan-results.json
      - name: Determine Sourcehawk Scan Results
        if: steps.sourcehawk.outputs.scan-passed == 'true'
        run: echo "Sourcehawk scan passed!"
      - name: Upload Scan Results
        uses: actions/upload-artifact@v2
        with:
          name: sourcehawk
          path: sourcehawk-scan-results.json

License

The Dockerfile, shell scripts, and documentation in the github action are released with the Apache 2.0 license.

Contributing

Please read our CONTRIBUTING.md for guidelines on contributing to this github action.

Testing Locally

./test.sh

sourcehawk-scan-github-action's People

Contributors

amyschoen avatar brianwyka avatar pseudocoding avatar

Stargazers

avatar

Watchers

avatar avatar avatar avatar

sourcehawk-scan-github-action's Issues

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.