-
Notifications
You must be signed in to change notification settings - Fork 0
/
action.yml
48 lines (48 loc) · 1.61 KB
/
action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
# action.yml
name: "Github G DATA Antivirus"
description: "Scans changed files in a Pull-Request for malware"
branding:
icon: shield
color: red
inputs:
VAAS_URL:
description: "The gateway URL of your credentials environment"
default: "wss://gateway.production.vaas.gdatasecurity.de/"
VAAS_TOKEN_URL:
description: "The token URL of your credentials environment"
default: "https://account.gdata.de/realms/vaas-production/protocol/openid-connect/token"
VAAS_CLIENT_ID:
description: "Client ID of your vaas credentials"
required: false
default: ""
VAAS_CLIENT_SECRET:
description: "Client secret of your vaas credentials"
required: false
default: ""
VAAS_USERNAME:
description: "Username of your vaas credentials"
required: false
default: ""
VAAS_PASSWORD:
description: "Password of your vaas credentials"
required: false
default: ""
REMOTE:
description: "the origin name"
default: "origin"
runs:
using: "composite"
steps:
- name: run Scan
env:
VAAS_URL: ${{ inputs.VAAS_URL }}
VAAS_TOKEN_URL: ${{ inputs.VAAS_TOKEN_URL }}
VAAS_CLIENT_ID: ${{ inputs.VAAS_CLIENT_ID }}
VAAS_CLIENT_SECRET: ${{ inputs.VAAS_CLIENT_SECRET }}
VAAS_USERNAME: ${{ inputs.VAAS_USERNAME }}
VAAS_PASSWORD: ${{ inputs.VAAS_PASSWORD }}
uses: docker://ghcr.io/gdatasoftwareag/vaas/git-scan:4.3.0
if: github.event_name == 'pull_request'
with:
entrypoint: /bin/bash
args: -c "git config --global --add safe.directory '*' && /app/git-scan ${{ inputs.REMOTE }} ${{ github.event.pull_request.base.ref }}"