forked from portswigger-cloud/defectdojo-findings-thresholds
-
Notifications
You must be signed in to change notification settings - Fork 0
/
action.yaml
70 lines (65 loc) · 2.25 KB
/
action.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
name: defectdojo findings threshold
description: A GitHub Action that evaluates the active findings against thresholds set by the user
inputs:
defectdojo-url:
description: the url of your defectdojo instance
required: true
defectdojo-username:
description: the username to login into your defectdojo instance
required: true
defectdojo-password:
description: the password to login into your defectdojo instance
required: true
defectdojo-product:
description: the defectdojo product that the scan result relates to
required: true
client-certificate-file-path:
description: the file path for a client side certificate if required
required: false
client-key-file-path:
description: the file path for a client side private key if required
required: false
total-threshold:
required: false
default: "false"
description: total findings threshold
critical-threshold:
required: false
default: "false"
description: critical findings threshold
high-threshold:
required: false
default: "false"
description: high findings threshold
medium-threshold:
required: false
default: "false"
description: medium findings threshold
low-threshold:
required: false
default: "false"
description: low findings threshold
info-threshold:
required: false
default: "false"
description: info findings threshold
runs:
using: docker
image: docker://ghcr.io/portswigger-cloud/defectdojo-utils:v1.0.1
entrypoint: /usr/defectdojo-utils/src/findings_thresholds.py
env:
DEFECT_DOJO_URL: ${{ inputs.defectdojo-url }}
DEFECT_DOJO_USERNAME: ${{ inputs.defectdojo-username }}
DEFECT_DOJO_PASSWORD: ${{ inputs.defectdojo-password }}
DEFECT_DOJO_PRODUCT: ${{ inputs.defectdojo-product }}
CLIENT_CERTIFICATE_FILE_PATH: ${{ inputs.client-certificate-file-path }}
CLIENT_KEY_FILE_PATH: ${{ inputs.client-key-file-path }}
TOTAL_THRESHOLD: ${{ inputs.total-threshold }}
CRITICAL_THRESHOLD: ${{ inputs.critical-threshold }}
HIGH_THRESHOLD: ${{ inputs.high-threshold }}
MEDIUM_THRESHOLD: ${{ inputs.medium-threshold }}
LOW_THRESHOLD: ${{ inputs.low-threshold }}
INFO_THRESHOLD: ${{ inputs.info-threshold }}
branding:
icon: 'shield'
color: 'orange'