SAST-SCAN fails in GitHub Actions on Private Repo with Android/Java code

ShiftLeftSecurity / sast-scan

Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.

https://discord.gg/DCNxzaeUpd

Apache License 2.0

788 stars 112 forks source link

SAST-SCAN fails in GitHub Actions on Private Repo with Android/Java code #373

Open HolimaX opened 1 year ago

HolimaX commented 1 year ago

INFO [2022-10-02 10:33:28,704] ⚡︎ Executing "java -jar /usr/local/bin/detekt-cli.jar -i /github/workspace -r xml:reports/kotlin-report.xml" Error: Invalid or corrupt jarfile /usr/local/bin/detekt-cli.jar

prabhu commented 1 year ago

Could you try with an earlier tagged version since it could be a bug in the latest scan image?

HolimaX commented 1 year ago

Could you try with an earlier tagged version since it could be a bug in the latest scan image?

Could you specify/recommend exact one?

HolimaX commented 1 year ago

Could you try with an earlier tagged version since it could be a bug in the latest scan image?

Could you specify/recommend exact one?

@prabhu ^ ?

prabhu commented 1 year ago

@HolimaX 2.0.4