codelogic-java-agent-github-action/action.yml at master · CodeLogicIncEngineering/codelogic-java-agent-github-action · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
name: 'CodeLogic Java Agent'
description: 'Scans Java artifacts into your '

branding:
  icon: 'share-2'
  color: 'blue'

inputs:
  codelogic_host:
    description: 'The host address of the CodeLogic instance without the "/codelogic/ui/" part.'
    required: true
  agent_uuid:
    description: 'The UUID of the Agent in CodeLogic.'
    required: true
  agent_password:
    description: 'The password for the agent.'
    required: true
  application_name:
    description: 'The Application node to create that will be the parent of all objects found in the scan.'
    required: true
  scan_space:
    description: 'The name of the scan space that the data will be saved to.
    If specified, a ScanSpace with this name will be created if not found.
    If not specified, information will be saved to the default ScanSpace.'
    required: false
  scan_path:
    description: 'A comma-separated list of files and folders to scan. Must start with /github/workspace/'
    default: "/github/workspace"
    required: false
  scan_path_depth:
    description: 'During scanning, this value will be used as the depth of subdirectories to traverse before stopping.'
    default: '1'
    required: false
  recursive_filter:
    description: 'A comma-separated list of substrings to key off of to trigger recursive analysis (jar within jar).'
    required: false
  method_filter:
    description: 'A comma-separated list of Java package prefixes that should be included in method-invokes-method relationships.'
    required: false
  database_identities:
    description: 'A comma-separated list of database identities to use in the creation of relationships.'
    required: false
  force_rescan:
    description: 'Forces the agent to rescan already scanned artifacts.'
    default: 'false'
    required: false
  expunge_scan_sessions:
    description: 'Instruct the server to delete all other scan sessions created by this agent and its configuration after the current scan session has completed successfully.'
    default: 'false'
    required: false
  java_opts:
    description: 'Java options to pass to the java command.'
    required: false

runs:
  using: 'docker'
  image: docker://public.ecr.aws/codelogic.com/codelogic_java:latest
  args: [
    "analyze",
    "-t scan",
    "-p ${{ inputs.scan_path }}",
    "-a ${{ inputs.application_name }}",
    "${{ inputs.scan_space != null && format('-s {0}', inputs.scan_space) || '' }}",
    "${{ inputs.recursive_filter != null && format('-r {0}', inputs.recursive_filter) || '' }}",
    "${{ inputs.method_filter != null && format('-m {0}', inputs.method_filter) || '' }}",
    "${{ inputs.database_identities != null && format('-d {0}', inputs.database_identities) || '' }}",
    "${{ inputs.force_rescan == 'true' && '--rescan' || '' }}",
    "${{ inputs.expunge_scan_sessions == 'true' && '-e' || '' }}"
  ]
  env:
    CODELOGIC_HOST: ${{ inputs.codelogic_host }}
    AGENT_UUID: ${{ inputs.agent_uuid }}
    AGENT_PASSWORD: ${{ inputs.agent_password }}
    SCAN_PATH_DEPTH: ${{ inputs.scan_path_depth }}
    JAVA_OPTS: ${{ inputs.java_opts }}