Skip to content
This repository was archived by the owner on Mar 28, 2021. It is now read-only.

Commit 0fdda83

Browse files
johnsimon9johnsimon9
authored
Crunch42.analysis.yml
1 parent 9fc162d commit 0fdda83

File tree

1 file changed

+48
-0
lines changed

1 file changed

+48
-0
lines changed

crunch42-analysis.yml

Lines changed: 48 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,48 @@
1+
# This workflow locates REST API file contracts
2+
# (Swagger or OpenAPI format, v2 and v3, JSON and YAML)
3+
# and runs 200+ security checks on them using 42Crunch Security Audit technology.
4+
#
5+
# Documentation is located here: https://docs.42crunch.com/latest/content/tasks/integrate_github_actions.htm
6+
#
7+
# To use this workflow, you will need to complete the following setup steps.
8+
#
9+
# 1. Create a free 42Crunch account at https://platform.42crunch.com/register
10+
#
11+
# 2. Follow steps at https://docs.42crunch.com/latest/content/tasks/integrate_github_actions.htm
12+
# to create an API Token on the 42Crunch platform
13+
#
14+
# 3. Add a secret in GitHub as explained in https://docs.42crunch.com/latest/content/tasks/integrate_github_actions.htm,
15+
# store the 42Crunch API Token in that secret, and supply the secret's name as api-token parameter in this workflow
16+
#
17+
# If you have any questions or need help contact https://support.42crunch.com
18+
19+
name: "42Crunch REST API Static Security Testing"
20+
21+
# follow standard Code Scanning triggers
22+
on:
23+
push:
24+
branches: [ master ]
25+
pull_request:
26+
# The branches below must be a subset of the branches above
27+
branches: [ master ]
28+
schedule:
29+
- cron: '26 7 * * 4'
30+
31+
jobs:
32+
rest-api-static-security-testing:
33+
runs-on: ubuntu-latest
34+
steps:
35+
- uses: actions/checkout@v2
36+
37+
- name: 42Crunch REST API Static Security Testing
38+
uses: 42Crunch/api-security-audit-action@v1
39+
with:
40+
# Please create free account at https://platform.42crunch.com/register
41+
# Follow these steps to configure API_TOKEN https://docs.42crunch.com/latest/content/tasks/integrate_github_actions.htm
42+
api-token: ${{ secrets.API_TOKEN }}
43+
# Fail if any OpenAPI file scores lower than 75
44+
min-score: 75
45+
# Upload results to Github code scanning
46+
upload-to-code-scanning: true
47+
# Github token for uploading the results
48+
github-token: ${{ github.token }}

0 commit comments

Comments
 (0)