search

globocom / huskyCI

Performing security tests inside your CI
https://huskyci.opensource.globo.com
BSD 3-Clause "New" or "Revised" License
572 stars 137 forks source link

Can't access scan results [bug] #536

Closed darkspirit510 closed 1 year ago

darkspirit510 commented 3 years ago

Hi, i just installed huskyCI and scan against the default example.

make run-client
fatal: No names found, cannot describe anything.
[HUSKYCI][*] poc-golang-gosec -> https://github.com/globocom/huskyCI.git
[HUSKYCI][*] huskyCI analysis started! 6uYsSstGv69Ft65X3y5EWCDWRsiSVxpG
[HUSKYCI][!] Hold on! huskyCI is still running...

[...]

[HUSKYCI][*] The following securityTests were executed and no blocking vulnerabilities were found:
[HUSKYCI][*] [huskyci/gitleaks:2.1.0]
[HUSKYCI][*] Some HIGH/MEDIUM issues were found in these securityTests:
[HUSKYCI][*] [huskyci/gosec:v2.3.0]
make: *** [run-client] Error 190

According to API documentation (https://huskyci.opensource.globo.com/docs/api/routes) the following request:

curl -s localhost:8888/analysis/6uYsSstGv69Ft65X3y5EWCDWRsiSVxpG

should output details of the scan, but I'm getting:

{
  "error": "permission denied",
  "success": false
}