search

insidersec / insider-action

:octocat: Official Github Action for Insider
MIT License
10 stars 4 forks source link
actios android csharp dotnet github-actions insider java javascript kotlin nodejs owasp sast security-scanner security-tools static-analyzer swift

readme

GitHub marketplace Test workflow

Usage

Workflow

name: insider
on:
  pull_request:
  push:
jobs:
  insider:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v2
        with:
          fetch-depth: 0

      - name: Run Insider
        uses: insidersec/insider-action@v0
        with:
            technology: javascript
            # Relative path under $GITHUB_WORKSPACE to use as a target
            # In this example, will use $GITHUB_WORKSPACE/src as a target
            target: src

Customizing

Inputs

Following inputs can be used as steps.with keys

Name Type Default Description
version String latest Insider version
technology String Specify which technology ruleset to load
target String . Relative path under $GITHUB_WORKSPACE to use as a target
security String Set the Security level, values between 0 and 100
noHtml Bool Skips the report generation in the HTML format
noJson Bool Skips the report generation in the JSON format
noBanner Bool Skips the banner printing