Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/naokikimura/gosec-action
Analyze code statically using gosec in Github actions
https://github.com/naokikimura/gosec-action
Last synced: 23 days ago
JSON representation
Analyze code statically using gosec in Github actions
- Host: GitHub
- URL: https://github.com/naokikimura/gosec-action
- Owner: naokikimura
- License: mit
- Created: 2021-02-19T09:09:59.000Z (almost 4 years ago)
- Default Branch: main
- Last Pushed: 2023-04-22T09:34:25.000Z (over 1 year ago)
- Last Synced: 2024-11-30T12:46:57.714Z (about 1 month ago)
- Language: TypeScript
- Size: 501 KB
- Stars: 1
- Watchers: 2
- Forks: 0
- Open Issues: 7
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# Code review using gosec
Analyze code statically by using [gosec](https://github.com/securego/gosec/) in Github actions
## Inputs
### `files`
Specify directories
(Multiple directories can be specified by separating them with line feed)
### `options`
Changes `gosec` command line options.
Specify the options in JSON array format.
e.g.: `["-conf", ".gosecrc.json"]`
### `working_directory`
Changes the current working directory of the Node.js process
### `reporter_type_notation`
Change the reporter.
(Multiple can be specified separated by commas)
## Example usage
```yaml
name: Analyze code statically
"on": pull_request
jobs:
reek:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- name: Analyze code statically using gosec
uses: naokikimura/gosec-action@v0
```
## Contributing
Bug reports and pull requests are welcome on GitHub at https://github.com/naokikimura/gosec-action
## License
The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).