Awesome
<p align="center">
<picture>
<source media="(prefers-color-scheme: dark)" srcset="https://github.com/aquasecurity/chain-bench/raw/main/docs/imgs/banner_dm.png">
<source media="(prefers-color-scheme: light)" srcset="https://github.com/aquasecurity/chain-bench/raw/main/docs/imgs/banner_lm.png">
<img alt="chain-bench logo" src="https://github.com/aquasecurity/chain-bench/raw/main/docs/imgs/banner_lm.png">
</picture>
</p>
Chain Bench Github Action
Github Action for Chain Bench
Table Of Contents
Usage
Workflow
jobs:
chain_bench_scan_example:
runs-on: ubuntu-latest
name: Test Job
steps:
- name: Chain Bench
id: chain-bench
uses: aquasecurity/chain-bench-action@v1.0.0
with:
repository-url: ${{ github.server_url }}/${{ github.repository }} # Compiles to https://github.com/aquasecurity/chain-bench-action
github-token: ${{ secrets.GITHUB_TOKEN }}
scm-platform: github #Optional parameter for dedicated SCM servers
# Using the github action output from the scan step "chain-bench-result" (JSON so you can run rego/jq against it)
- name: Echo
run: echo ${{ steps.chain-bench.outputs.chain-bench-result }}
Action
Inputs
Following inputs
input | description | required |
---|
repository-url | The full repository url to scan | True |
github-token | The github token to use for scanning | True |
scm-platform | the SCM platform for dedicated envs | False |
Outputs
output | description |
---|
chain-bench-result | JSON output from chain-bench |