Awesome
<p align="center"> <picture> <source media="(prefers-color-scheme: dark)" srcset="https://github.com/aquasecurity/chain-bench/raw/main/docs/imgs/banner_dm.png"> <source media="(prefers-color-scheme: light)" srcset="https://github.com/aquasecurity/chain-bench/raw/main/docs/imgs/banner_lm.png"> <img alt="chain-bench logo" src="https://github.com/aquasecurity/chain-bench/raw/main/docs/imgs/banner_lm.png"> </picture> </p>Chain Bench Github Action
Table Of Contents
Usage
Workflow
jobs:
chain_bench_scan_example:
runs-on: ubuntu-latest
name: Test Job
steps:
- name: Chain Bench
id: chain-bench
uses: aquasecurity/chain-bench-action@v1.0.0
with:
repository-url: ${{ github.server_url }}/${{ github.repository }} # Compiles to https://github.com/aquasecurity/chain-bench-action
github-token: ${{ secrets.GITHUB_TOKEN }}
scm-platform: github #Optional parameter for dedicated SCM servers
# Using the github action output from the scan step "chain-bench-result" (JSON so you can run rego/jq against it)
- name: Echo
run: echo ${{ steps.chain-bench.outputs.chain-bench-result }}
Action
Inputs
Following inputs
| input | description | required |
|---|---|---|
| repository-url | The full repository url to scan | True |
| github-token | The github token to use for scanning | True |
| scm-platform | the SCM platform for dedicated envs | False |
Outputs
| output | description |
|---|---|
| chain-bench-result | JSON output from chain-bench |