-
Notifications
You must be signed in to change notification settings - Fork 5
/
Copy pathaction.yml
66 lines (66 loc) · 2.19 KB
/
action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
name: "Datadog Static Analysis"
description: "Run a Datadog Static Analysis in your Github Action workflows"
author: "Datadog"
branding:
icon: 'check'
color: 'purple'
inputs:
dd_api_key:
description: "Your Datadog API key used to authenticate requests."
required: true
default: ""
dd_app_key:
description: "Your Datadog Application key used to authenticate requests."
required: true
default: ""
dd_site:
description: "The Datadog site. For example, users in the EU may want to set datadoghq.eu."
required: false
default: "datadoghq.com"
cpu_count:
description: "Set the number of CPUs used to by the analyzer."
required: false
default: "2"
enable_performance_statistics:
description: "Get the execution time statistics for analyzed files."
required: false
default: "false"
debug:
description: "Lets the analyzer print additional logs useful for debugging."
required: false
default: "no"
secrets_enabled:
description: "Enable Secrets (Limited Availability)"
required: false
default: "false"
static_analysis_enabled:
description: "Enable Static Analysis"
required: false
default: "true"
subdirectory:
description: 'A subdirectory pattern or glob (or space-delimited subdirectory patterns) that the analysis should be limited to. For example: "src" or "src packages".'
required: false
default: ""
architecture:
description: "The architecture of the image to use. Can be x86_64 or aarch64."
required: false
default: "x86_64"
diff_aware:
description: "Enable diff aware scanning mode."
required: false
default: "true"
runs:
using: "docker"
image: "Dockerfile"
env:
DD_API_KEY: ${{ inputs.dd_api_key }}
DD_APP_KEY: ${{ inputs.dd_app_key }}
DD_SITE: ${{ inputs.dd_site }}
CPU_COUNT: ${{ inputs.cpu_count }}
ENABLE_PERFORMANCE_STATISTICS: ${{ inputs.enable_performance_statistics }}
ENABLE_DEBUG: ${{ inputs.debug }}
SUBDIRECTORY: ${{ inputs.subdirectory }}
ARCHITECTURE: ${{ inputs.architecture }}
DIFF_AWARE: ${{ inputs.diff_aware }}
SECRETS_ENABLED: ${{ inputs.secrets_enabled }}
STATIC_ANALYSIS_ENABLED: ${{ inputs.static_analysis_enabled }}