forked from kubescape/github-action
-
Notifications
You must be signed in to change notification settings - Fork 0
/
action.yml
51 lines (50 loc) · 1.62 KB
/
action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
name: Kubescape
description: Run Kubescape scan
inputs:
failedThreshold:
description: |
Failure threshold is the percent above which the command fails and
returns exit code 1 (default 0 i.e, action fails if any control fails)
required: false
severityThreshold:
description: |
Severity threshold is the severity of a failed control at or above which
the command terminates with an exit code 1 (default is "high", i.e. the
action fails if any High severity control fails)
required: false
default: high
files:
description: |
Path to the configuration yaml to scan
required: false
outputFile:
description: |
Name of the output file. Default is "results.out".
required: false
frameworks:
description: |
List of all frameworks to scan. Run kubescape list frameworks with
the Kubescape CLI to get a list of all frameworks. Either frameworks
have to be specified or controls.
required: false
controls:
description: |
List of all controls to scan. Run kubescape list controls with the
Kubescape CLI to get a list of all controls. Either frameworks
have to be specified or controls.
required: false
account:
description: |
Account ID for the Kubescape SaaS.
Used for custom configuration, such as frameworks, control configuration, etc.
required: false
format:
description: |
Output format
Run `kubescape scan -h` for listing supported formats
required: false
default: junit
runs:
using: docker
image: Dockerfile
# image: docker://quay.io/kubescape/github-actions