-
Notifications
You must be signed in to change notification settings - Fork 3
Expand file tree
/
Copy pathaction.yml
More file actions
62 lines (62 loc) · 1.68 KB
/
action.yml
File metadata and controls
62 lines (62 loc) · 1.68 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
name: insightCloudSec Scan
author: Rapid7
description: >
Scans a cloudformation template and saves results to disk.
inputs:
api_key:
description: Api key for server at base_url
required: true
base_url:
description: URL of ICS server
required: true
config_name:
description: Name of insightCloudSec configuration to run scan with
required: true
log_level:
description: Sets log level ["trace", "debug", "info", "warn", "error", "fatal"] (default "info")
required: false
default: "info"
log_path:
description: Path to write log file
required: false
default: "./log/mimics.log"
report_formats:
description: Formats of scan result report artifacts (all,sarif,html,junitxml) (default "all")
required: false
default: "all"
report_path:
description: Path to write report files
required: false
default: "./"
files_to_scan:
description: File(s) to scan
required: false
default: "./[^.git]*"
scan_target:
description: Scan target identifier used for exception filtering
required: false
default: Github Action Scan
outputs:
stdout:
description: Output of the mimics scan command
runs:
using: docker
image: docker://public.ecr.aws/rapid7-insightcloudsec/ics/mimics:v1
env:
MIMICS_BASE_URL: ${{ inputs.base_url }}
MIMICS_API_KEY: ${{ inputs.api_key }}
args:
- scan
- ${{ inputs.files_to_scan }}
- -c
- ${{ inputs.config_name }}
- --log-level
- ${{ inputs.log_level }}
- --log-path
- ${{ inputs.log_path }}
- --report-path
- ${{ inputs.report_path }}
- --report-formats
- ${{ inputs.report_formats }}
- --scan-target
- ${{ inputs.scan_target }}