-
Notifications
You must be signed in to change notification settings - Fork 12
Expand file tree
/
Copy pathaction.yml
More file actions
39 lines (35 loc) · 1.06 KB
/
action.yml
File metadata and controls
39 lines (35 loc) · 1.06 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
name: "CodeQL IaC Extractor"
description: "CodeQL IaC Extractor GitHub Action"
author: "GitHub Security Lab"
branding:
color: "blue"
icon: "lock"
inputs:
token:
description: >
The GitHub token used to make authenticated API requests.
default: ${{ github.token }}
required: false
rewrite-sarif-tool-name:
description: >
Whether to rewrite the SARIF tool name to "CodeQL IaC" or keep the original tool name.
required: false
default: "true"
outputs:
sarif-results:
description: >
The path to the SARIF results file generated by the extractor.
value: ${{ steps.extractor.outputs.sarif_results }}
runs:
using: "composite"
steps:
- name: "CodeQL Extractor Action"
uses: advanced-security/codeql-extractor-action@v0.1.5
id: extractor
with:
token: ${{ inputs.token }}
extractors: "advanced-security/codeql-extractor-iac@v0.5.1"
packs: advanced-security/iac-queries@0.5.1
languages: "iac"
# Other settings
sarif-tool-name: ${{ inputs.rewrite-sarif-tool-name }}