https://github.com/checkmarx/kics-github-action-demo

A demo repo to show KICS Github Action in Action
https://github.com/checkmarx/kics-github-action-demo

cloud iac kics security

Last synced: 5 months ago
JSON representation

A demo repo to show KICS Github Action in Action

• Host: GitHub
• URL: https://github.com/checkmarx/kics-github-action-demo
• Owner: Checkmarx
• License: apache-2.0
• Created: 2021-11-23T11:51:39.000Z (over 4 years ago)
• Default Branch: main
• Last Pushed: 2023-05-13T06:32:31.000Z (about 3 years ago)
• Last Synced: 2024-04-17T16:11:29.525Z (about 2 years ago)
• Topics: cloud, iac, kics, security
• Language: Go
• Homepage: https://kics.io/
• Size: 46.9 KB
• Stars: 0
• Watchers: 6
• Forks: 4
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# 🤖 KICS GitHub Actions Demo

This repository shows how KICS GitHub Action can be set and was fully inspired by the documentation on [KICS GitHub Actions Marketplace tutorial](https://github.com/marketplace/actions/kics-github-action#simple-usage-example).

- To check how the action was set, go to [.github/workflows/kics-scan=action.yml](https://github.com/Checkmarx/kics-github-action-demo/blob/main/.github/workflows/kics-scan-action.yml) file. 

   - You will see simple example of how to use KICS features in your GitHub Actions Pipeline.

- To check results examples, go to [Actions tab](https://github.com/Checkmarx/kics-github-action-demo/actions) and select a workflow that is finished. 

   - You will see multiples failures! This is intended to generate outputs so you can check how KICS create *Annotations* and upload reports as *Artifacts* to be downloaded.

- Finally, go to the [Security tab](https://github.com/Checkmarx/kics-github-action-demo/security) on [Code scanning alerts](https://github.com/Checkmarx/kics-github-action-demo/security/code-scanning) section and see how KICS uses sarif reports to generate scanning issues.