-
Notifications
You must be signed in to change notification settings - Fork 4
/
action.yaml
43 lines (43 loc) · 1.39 KB
/
action.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
name: "Mondoo Docker Image Action"
description: "Scan Docker images for vulnerabilities and misconfigurations with Mondoo. This action supports both local images and images within remote registries."
branding:
icon: "shield"
color: "purple"
inputs:
image:
description: Docker image ID or name:tag to scan.
required: true
log-level:
description: >-
Sets the log level: error, warn, info, debug, trace (default "info")
default: info
required: false
output:
description: >-
Set the output format for scan results: compact, yaml, json, junit, csv, summary, full, report (default "compact")
default: compact
required: false
score-threshold:
description: >-
Sets the score threshold for scans. Scores that fall below the threshold will exit 1. (default "0" - job continues regardless of the score returned by a scan).
default: "0"
required: false
service-account-credentials:
description: "Base64 encoded service account credentials used to authenticate with Mondoo Platform"
required: false
runs:
using: "docker"
image: "docker://mondoo/cnspec:11"
args:
- scan
- docker
- image
- ${{ inputs.image }}
- --output
- ${{ inputs.output }}
- --score-threshold
- ${{ inputs.score-threshold }}
- --log-level
- ${{ inputs.log-level }}
env:
MONDOO_CONFIG_BASE64: ${{ inputs.service-account-credentials }}