Home

Awesome

Veinmind Action

基于 veinmind-tools 实现的 Github Action

<img src="https://img.shields.io/github/v/release/chaitin/veinmind-action.svg" /> <img src="https://img.shields.io/github/release-date/chaitin/veinmind-action.svg?color=blue&label=update" />

🕹️ 快速开始

扫描在 Action 过程中构建的镜像

on: [push]
jobs:
  build:
    name: Build
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3
      - name: Build image from your dockerfile
        run: docker build -t my-app:${{ github.sha }} .
      - name: Run veinmind-tools to scan image
        uses: chaitin/veinmind-action@main
        with:
          scan-action: scan-host
          image-ref: 'my-app:${{ github.sha }}'

🏳️‍🌈 参数设置

参数名称参数作用默认值
scan-action扫描功能类型scan-host
image-ref镜像 Reference
exit-code当发现安全问题时的程序退出码0
output报告输出名称report.json