-
-
Notifications
You must be signed in to change notification settings - Fork 11
/
action.yml
31 lines (31 loc) · 1 KB
/
action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
name: 'The PHP Security Checker'
description: 'Checks composer.json for known vulnerabilities in your package dependencies'
branding:
icon: 'umbrella'
color: 'gray-dark'
inputs:
lock:
description: 'The path to composer.lock is stored (root directory by default)'
required: false
default: './composer.lock'
format:
description: 'The output format (ansi by default, supported: ansi, junit, markdown, json, or yaml)'
required: false
default: ansi
disable-exit-code:
description: 'Whether to continue when issues are detected (false by default)'
required: false
default: 0
outputs:
vulns:
description: 'The detected vulnerabilities as JSON'
runs:
using: 'docker'
image: 'docker://ghcr.io/symfony-cli/symfony-cli:v5'
args:
- "security:check"
- "--format"
- ${{ inputs.format }}
- "--dir"
- ${{ inputs.lock }}
- "--disable-exit-code=${{ inputs.disable-exit-code }}"