-
Notifications
You must be signed in to change notification settings - Fork 1
/
action.yaml
53 lines (48 loc) · 2.04 KB
/
action.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
name: defectdojo active findings
description: A GitHub Action that checks if there are active findings for a product in DefectDojo
inputs:
defectdojo-url:
description: the url of your defectdojo instance
required: true
defectdojo-username:
description: the username to login into your defectdojo instance
required: true
defectdojo-password:
description: the password to login into your defectdojo instance
required: true
defectdojo-product:
description: the defectdojo product that the scan result relates to
required: true
client-certificate-file-path:
description: the file path for a client side certificate if required
required: false
client-key-file-path:
description: the file path for a client side private key if required
required: false
runs:
using: docker
image: docker://ghcr.io/portswigger-cloud/defectdojo-utils:v1.0.1
entrypoint: /usr/defectdojo-utils/src/active_findings.py
env:
DEFECT_DOJO_URL: ${{ inputs.defectdojo-url }}
DEFECT_DOJO_USERNAME: ${{ inputs.defectdojo-username }}
DEFECT_DOJO_PASSWORD: ${{ inputs.defectdojo-password }}
DEFECT_DOJO_PRODUCT: ${{ inputs.defectdojo-product }}
CLIENT_CERTIFICATE_FILE_PATH: ${{ inputs.client-certificate-file-path }}
CLIENT_KEY_FILE_PATH: ${{ inputs.client-key-file-path }}
outputs:
total:
description: the total number of active findings registered against this product in DefectDojo
critical:
description: the number of active critical severity findings registered against this product in DefectDojo
high:
description: the number of active high severity findings registered against this product in DefectDojo
medium:
description: the number of active medium severity findings registered against this product in DefectDojo
low:
description: the number of active low severity findings registered against this product in DefectDojo
info:
description: the number of active info severity findings registered against this product in DefectDojo
branding:
icon: 'shield'
color: 'orange'