fortify / github-action

Fortify GitHub Actions
Other
10 stars 9 forks source link

Support for specifying scsast controller URL for sc-sast-scan #47

Open crance opened 2 months ago

crance commented 2 months ago

Enhancement Request

The native scancentral cli supports either specifying SSC_URL or SCSAST Controller URL (henceforth SCSAST_URL).

Currently, if SSC_URL is specified in the native scancentral cli, it will retrieve the SCSAST_URL setting configured in SSC. In some environments, SCSAST_URL specified in SSC could be using internal DNS/IP (or even k8s cluster name). In such scenario, the resolved SCSAST_URL will be an internal DNS/IP, and hence not accessible via GitHub.

The current workaround is use fortify/github-action/setup to install sc-client and run the native scancentral command via shell. A reusable GitHub action approach would be nice.

rsenden commented 1 month ago

Sorry for the delay; as this will need to be implemented in fcli, I've created a new issue on the fcli repo with similar contents.