SAST-SCAN fails in GitHub Actions on Private Repo with Android/Java code

ShiftLeftSecurity / sast-scan

Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.

https://discord.gg/DCNxzaeUpd

Apache License 2.0

809 stars 111 forks source link

SAST-SCAN fails in GitHub Actions on Private Repo with Android/Java code #373

Open HolimaX opened 2 years ago

HolimaX commented 2 years ago

INFO [2022-10-02 10:33:28,704] ⚡︎ Executing "java -jar /usr/local/bin/detekt-cli.jar -i /github/workspace -r xml:reports/kotlin-report.xml" Error: Invalid or corrupt jarfile /usr/local/bin/detekt-cli.jar

prabhu commented 2 years ago

Could you try with an earlier tagged version since it could be a bug in the latest scan image?

HolimaX commented 2 years ago

Could you try with an earlier tagged version since it could be a bug in the latest scan image?

Could you specify/recommend exact one?

HolimaX commented 2 years ago

Could you try with an earlier tagged version since it could be a bug in the latest scan image?

Could you specify/recommend exact one?

@prabhu ^ ?

prabhu commented 2 years ago

@HolimaX 2.0.4