You're viewing an older version of this GitHub Action. Do you want to see the latest version instead?
GitHub Action
SecureStack Secrets Analysis
secrets-v0.1.0
A GitHub Action to execute SecureStack secrets analysis on an application code repository.
name: Example Workflow Using SecureStack Actions
on: push
jobs:
security:
runs-on: ubuntu-latest
steps:
- name: Checkout repo for running secrets analysis within workflow
id: checkout
uses: actions/[email protected]
with:
fetch-depth: 0
- name: Secrets Analysis Step
id: secrets
uses: SecureStackCo/actions/[email protected]
with:
securestack_api_key: ${{ secrets.SECURESTACK_API_KEY_SECRET }}
securestack_app_id: '<Application Id>'
severity: critical
flags: '-d 50'
NOTE - to understand possible values for the action input flags, run the SecureStack cli locally:
$ bloodhound-cli code --help
- Log in to SecureStack and go to the Profile -> GENERATE KEY screen.
- Generate an API key and copy the value.
- Paste into the value of a secret called SECURESTACK_API_KEY_SECRET in the GitHub repo settings.
- Log in to SecureStack.
- Open the application you wish to analyse.
- Copy the value of the application id on the View Application screen.
- Paste into the value of the
securestack_app_idaction input for the step using the SecureStack action in your workflow.
Made with 💜 by SecureStack