{"id":26059718,"url":"https://github.com/orange-cloudfoundry/cf-audit-actions","last_synced_at":"2026-01-06T15:12:58.590Z","repository":{"id":41050682,"uuid":"189281007","full_name":"orange-cloudfoundry/cf-audit-actions","owner":"orange-cloudfoundry","description":"Audit cloud foundry objects and do action when found a potential vulnerability","archived":false,"fork":false,"pushed_at":"2024-09-06T13:43:12.000Z","size":13428,"stargazers_count":1,"open_issues_count":1,"forks_count":1,"subscribers_count":8,"default_branch":"master","last_synced_at":"2024-09-06T15:55:51.400Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/orange-cloudfoundry.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2019-05-29T18:49:35.000Z","updated_at":"2024-09-06T13:43:04.000Z","dependencies_parsed_at":"2023-10-12T06:38:46.569Z","dependency_job_id":"d8b793a5-32d2-4d75-a960-689396d67e61","html_url":"https://github.com/orange-cloudfoundry/cf-audit-actions","commit_stats":null,"previous_names":[],"tags_count":88,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/orange-cloudfoundry%2Fcf-audit-actions","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/orange-cloudfoundry%2Fcf-audit-actions/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/orange-cloudfoundry%2Fcf-audit-actions/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/orange-cloudfoundry%2Fcf-audit-actions/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/orange-cloudfoundry","download_url":"https://codeload.github.com/orange-cloudfoundry/cf-audit-actions/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":242555533,"owners_count":20148720,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-03-08T13:28:08.099Z","updated_at":"2026-01-06T15:12:58.543Z","avatar_url":"https://github.com/orange-cloudfoundry.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# cf-audit-actions\n\nAudit cloud foundry objects and do action when found a potential vulnerability or do not match condition\nFor now only checking and disable ssh on app or space after a time limit has been made.\n\n## Installation\n\n```bash\n$ bash -c \"$(curl -fsSL https://raw.github.com/orange-cloudfoundry/cf-audit-actions/master/bin/install.sh)\"\n```\n\n## Usage\n\n```\nUsage:\n  cf-audit-actions [OPTIONS] \u003corg-limiter | ssh | ssh-app\u003e\n\nApplication Options:\n  -a, --api=                 cf api endpoint\n  -i, --client-id=           cf client id\n  -s, --client-secret=       cf client id\n  -u, --username=            cf username (if client-id can't bet set)'\n  -p, --password=            cf password (if client-id can't bet set)\n      --parallel=            how many parallel request can be made\n  -k, --skip-ssl-validation  Skip ssl validation\n  -v, --version              Show version\n\nHelp Options:\n  -h, --help                 Show this help message\n\nAvailable commands:\n  org-limiter  Delete all apps which has been created after a period of time in an org\n  ssh          Check if ssh is enabled in spaces and deactivate it if it reach the time limit\n  ssh-app      Check if ssh is enabled in apps and deactivate it if it reach the time limit\n```\n\n## Concourse pipelines\n\nPipeline are provided in [/ci](/ci) folder:\n\n- ssh audit and action on space:\n\n```bash\nfly set-pipeline \\\n    --pipeline ssh-space-audit-actions \\\n    --config ci/ssh/pipeline.yml \\\n    --load-vars-from ci/ssh/vars.yml\n```\n\n- ssh audit and action on app:\n```bash\nfly set-pipeline \\\n    --pipeline ssh-app-audit-actions \\\n    --config ci/ssh-app/pipeline.yml \\\n    --load-vars-from ci/ssh-app/vars.yml\n```","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Forange-cloudfoundry%2Fcf-audit-actions","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Forange-cloudfoundry%2Fcf-audit-actions","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Forange-cloudfoundry%2Fcf-audit-actions/lists"}