Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/guardsquare/appsweep-action
GitHub action for AppSweep can be used to continuously integrate app scanning using AppSweep into your Android app build process
https://github.com/guardsquare/appsweep-action
android-development app-testing security-tools
Last synced: 6 days ago
JSON representation
GitHub action for AppSweep can be used to continuously integrate app scanning using AppSweep into your Android app build process
- Host: GitHub
- URL: https://github.com/guardsquare/appsweep-action
- Owner: Guardsquare
- License: apache-2.0
- Created: 2021-10-14T19:31:55.000Z (almost 3 years ago)
- Default Branch: main
- Last Pushed: 2023-11-20T13:06:21.000Z (11 months ago)
- Last Synced: 2024-09-29T13:42:45.967Z (6 days ago)
- Topics: android-development, app-testing, security-tools
- Language: Python
- Homepage:
- Size: 2.71 MB
- Stars: 18
- Watchers: 10
- Forks: 3
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
GitHub action for AppSweep Mobile Application Security Testing
## Usage
This action can be used to automate scanning your Android application using a GitHub action
### Example workflow
```yaml
# This workflow will initiate a Guardsquare AppSweep scan of your APK
name: AppSweep mobile application security testing
on: [push]
jobs:
appsweep-scan:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@master
with:
repository: ''
- uses: guardsquare/appsweep-action@main
with:
appsweep_api_key: ${{ secrets.APPSWEEP_API_KEY }}
input_file: InsecureBankv2.apk
commit_hash: ${{ github.sha }}
```
### Inputs
| Input | Description |
|-------------------------------|----------------------------------------------------------------------------------|
| `APPSWEEP_API_KEY` | Project API key for your AppSweep project, should be stored using Github SECRETS |
| `INPUT_FILE` | The APK that will be uploaded to AppSweep |
| `MAPPING_FILE` _(optional)_ | An optional obfuscation mapping file for the build |
| `LIBRARY_FILE` _(optional)_ | An optional library mapping file for the build |
| `COMMIT_HASH` _(recommended)_ | A recommended parameter to track the commit hash of the build |
| `TAGS` _(optional)_ | An optional set of tags to append to your build |
## Examples
### Using all the optional inputs
This is how to use the optional input:
```yaml
# This workflow will initiate a Guardsquare AppSweep scan of your APK
name: AppSweep mobile application security testing
on: [push]
jobs:
appsweep-scan:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@master
with:
repository: ''
- uses: guardsquare/appsweep-action@main
with:
appsweep_api_key: ${{ secrets.APPSWEEP_API_KEY }}
input_file: InsecureBankv2.apk
mapping_file: mapping.txt
library_file:
commit_hash: ${{ github.sha }}
tags: release
```
### Using AppSweep Gradle Plugin in GitHub actions
In case you use the AppSweep Gradle plugin there is no need to provide `TAGS`, `LIBRARY_FILE`,
`MAPPING_FILE`, and `COMMIT_HASH` as they will be computed automatically. This is how to use the
AppSweep Gradle plugin in GitHub actions:
```yaml
# This workflow will initiate a Guardsquare AppSweep scan of your APK
name: AppSweep mobile application security testing
on: [push]
jobs:
appsweep-scan:
runs-on: ubuntu-latest
steps:
- name: check out repository code
uses: actions/checkout@master
- name: setup java
uses: actions/setup-java@v3
with:
distribution: 'oracle'
java-version: '17'
- name: upload with gradle
env:
appsweep_api_key: ${{ secrets.APPSWEEP_API_KEY }}
run: ./gradlew uploadToAppSweepDebug # You can change the task name in here.
```