Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions action.yml
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,8 @@ inputs:
description: A comma separated list of analyzer categories to run. Values secrets, code, artifacts, IaC, containers. Example IaC,secrets. Defaults to all.
languages:
description: A comma separated list of languages to analyze. Example javascript, typescript. Defaults to all.
tools:
description: A comma separated list of analyzer tools to run. Example bandit, binskim, eslint, template-analyzer, terrascan, trivy.
outputs:
sarifFile:
description: A file path to a SARIF results file.
Expand Down
11 changes: 11 additions & 0 deletions lib/action.js
Original file line number Diff line number Diff line change
Expand Up @@ -67,6 +67,17 @@ function run() {
}
}
}
let toolsString = core.getInput('tools');
if (!client.isNullOrWhiteSpace(toolsString)) {
let tools = toolsString.split(',');
args.push('--tool');
for (let i = 0; i < tools.length; i++) {
let tool = tools[i];
if (!client.isNullOrWhiteSpace(tool)) {
args.push(tool.trim());
}
}
}
args.push('--github');
yield client.run(args, 'microsoft/security-devops-action');
});
Expand Down
237 changes: 236 additions & 1 deletion node_modules/.package-lock.json

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

4 changes: 2 additions & 2 deletions package-lock.json

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion package.json
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"name": "microsoft-security-devops-action",
"version": "1.4.0",
"version": "1.5.0",
"description": "Node dependencies for the microsoft/security-devops-action.",
"scripts": {
"test": "mocha"
Expand Down
12 changes: 12 additions & 0 deletions src/action.ts
Original file line number Diff line number Diff line change
Expand Up @@ -45,6 +45,18 @@ async function run() {
}
}

let toolsString: string = core.getInput('tools');
if (!client.isNullOrWhiteSpace(toolsString)) {
let tools = toolsString.split(',');
args.push('--tool');
for (let i = 0; i < tools.length; i++) {
let tool = tools[i];
if (!client.isNullOrWhiteSpace(tool)) {
args.push(tool.trim());
}
}
}

args.push('--github');

await client.run(args, 'microsoft/security-devops-action');
Expand Down