forked from devmasx/brakeman-linter-action
-
Notifications
You must be signed in to change notification settings - Fork 1
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
7b5711d
commit 8ac6bfe
Showing
3 changed files
with
14 additions
and
9 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,6 +1,6 @@ | ||
| FROM ruby:2.7.5-alpine | ||
|
|
||
| RUN gem install brakeman | ||
| RUN gem install brakeman -v 5.2.1 | ||
|
|
||
| COPY lib /action/lib | ||
|
|
||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,13 +1,19 @@ | ||
| ## Brakeman github action | ||
| ## Brakeman results parser github action | ||
|
|
||
| Brakeman is a static analysis tool which checks Ruby on Rails applications for security vulnerabilities. | ||
| [See more](https://github.com/presidentbeef/brakeman) | ||
|
|
||
| You can read more about Brakeman itself [here](https://github.com/presidentbeef/brakeman). | ||
|
|
||
| This action helps make sure that brakeman results get accurately added to pull requests, in the event of a new issue. | ||
|
|
||
| Currently we hardcode the brakeman version (5.2.1) to prevent the unintended consequences of pulling down the latest version | ||
| regardless of context. | ||
|
|
||
| ### Usage | ||
|
|
||
| ```yml | ||
| - name: Brakeman | ||
| uses: cookpad/[email protected].1 | ||
| uses: cookpad/[email protected].2 | ||
| env: | ||
| GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} | ||
| ``` | ||
|
|
@@ -22,7 +28,7 @@ Brakeman is a static analysis tool which checks Ruby on Rails applications for s | |
| run: | | ||
| brakeman -f json > tmp/brakeman.json || exit 0 | ||
| - name: Brakeman | ||
| uses: cookpad/[email protected].1 | ||
| uses: cookpad/[email protected].2 | ||
| env: | ||
| GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} | ||
| REPORT_PATH: tmp/brakeman.json | ||
|
|
@@ -32,7 +38,7 @@ Brakeman is a static analysis tool which checks Ruby on Rails applications for s | |
| ```yml | ||
| - name: Brakeman | ||
| uses: cookpad/[email protected].1 | ||
| uses: cookpad/[email protected].2 | ||
| env: | ||
| GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} | ||
| PROJECT_PATH: my_rails_app | ||
|
|
@@ -51,7 +57,7 @@ jobs: | |
| steps: | ||
| - uses: actions/checkout@v1 | ||
| - name: Brakeman | ||
| uses: cookpad/[email protected].1 | ||
| uses: cookpad/[email protected].2 | ||
| env: | ||
| GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} | ||
| ``` | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters