search

Checkmarx / ast-github-action

Checkmarx application security testing (AST) GitHub action
https://github.com/marketplace/actions/checkmarx-ast-github-action
Apache License 2.0
16 stars 23 forks source link

[BUG] Latest version of ast-github-action (2.0.24) with problem when generating PDF report with scansummary #171

Closed rester closed 7 months ago

rester commented 7 months ago

Describe the bug

The latest ast-github-action version (2.0.24) is not working properly when using PDF report generator options with scansummary, resulting in a scan failed result even the scan finishing correctly. This behavior is happing in the actual @main of this repo.

Expected behavior

Keep using the scansummary option to generate PDFs reports without failed the action.

Actual behavior

The action failed when using the option scansummary to generete PDFs. As shown here:

2024/04/09 12:22:15 Scan Finished with status:  Completed
report option "scansummary" unavailable
Creating PR decoration for scan ID: 5f6f322a-9c98-.....
2024/04/09 12:22:50 github PR comment created successfully.
2024/04/09 12:23:00 Creating Markdown Summary Report:  cx_result.md
Scan failed

Steps to reproduce

  1. Create an action using aditional params to generate PDF report using the scansummary option: --report-format pdf --report-pdf-options Sast,Sca,Iac-Security,**ScanSummary**,ExecutiveSummary,ScanResults
  2. Run the action and wait to fail.

Additional comments

Propose to fix: Looks like the updated ast-cli version (version 2.0.72) is not working properly, so maybe downgrade the version to use a versino that doesn't have this behavior (2.0.71) or update after they fix it. An issue is already open in ast-cli repo related to this problem: https://github.com/Checkmarx/ast-cli/issues/703

github-actions[bot] commented 7 months ago

Internal Jira issue: AST-39230

OrShamirCM commented 7 months ago

Solved