forked from abirismyname/spotbugs-github-action
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathaction.yml
71 lines (70 loc) · 2.47 KB
/
action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
name: 'SpotBugs GitHub Action'
description: 'Runs SpotBugs Static Analysis Tool for Java - https://spotbugs.github.io/'
branding:
icon: 'check'
color: 'blue'
inputs:
spotbugs-version:
description: 'SpotBugs version to use. Default: latest.'
default: 'latest'
required: false
packages:
description: >
Comma separated list of packages to scan. It will fill the
-onlyAnalyze parameter in spotbugs. It can contain the wildcards '*' and
'-': com.example.* for single package or com.example.- for all
subpackages.
If not specified, it will scan all packages.
See more: https://spotbugs.readthedocs.io/en/stable/running.html#text-ui-options
required: false
arguments:
description: >
A string with any additional command arguments to be sent to spotbugs.
See more: https://spotbugs.readthedocs.io/en/stable/running.html#text-ui-options
required: false
output:
description: >
The output filename. If not specified, it will use the default name
'results.EXTENSION'
target:
description: >
Target of what you want to analyze. It can be a file or a directory, it
is usually the ./target folder where you compiled your project.
required: false
outputType:
description: >
Output type for the report. It can be 'xml', 'html', 'sarif', 'emacs'
or 'xdocs'. Default value is 'sarif' as it is the used by GitHub Advanced
Security.
default: 'sarif'
required: true
dependenciesPath:
description: >
Path to the dependencies folder. For Maven it is usually stored in the
'~/.m2' folder.
required: false
basePath:
description: >
The basePath is used as a prefix in the sarif file to help GitHub find the
right file of the issue. It is tipically something like 'src/main/java'.
required: false
progress:
description: >
Set it to true to enable showing progress.
required: false
runs:
using: "composite"
steps:
- id: spotbot-analysis
run: ${{ github.action_path }}/analyze.sh
shell: bash
env:
SPOTBUGS_VERSION: ${{ inputs.spotbugs-version }}
PACKAGES: ${{ inputs.packages }}
OUTPUT: ${{ inputs.output }}
OUTPUT_TYPE: ${{ inputs.outputType }}
ARGUMENTS: ${{ inputs.arguments }}
TARGET: ${{ inputs.target }}
DEPENDENCIES_PATH: ${{ inputs.dependenciesPath }}
BASE_PATH: ${{ inputs.basePath }}
PROGRESS: ${{ inputs.progress }}