Files
component-detection-depende…/action.yml
T

45 lines
2.4 KiB
YAML
Raw Normal View History

2023-04-07 15:07:03 -07:00
name: 'Component Detection dependency submission action'
2023-01-22 12:32:51 -08:00
description: 'Upload information about your dependencies to the GitHub dependency graph using dependency submission API. '
2022-08-25 09:12:00 -07:00
inputs:
2022-10-04 09:44:26 -07:00
token:
description: "GitHub Personal Access Token (PAT). Defaults to PAT provided by Actions runner."
required: false
default: ${{ github.token }}
2025-06-12 11:46:07 +01:00
filePath:
description: 'The path to the directory containing the environment files to upload. Defaults to Actions working directory.'
2022-08-25 09:21:59 -07:00
required: false
2022-08-25 11:50:14 -07:00
default: '.'
2023-01-22 19:46:41 +00:00
directoryExclusionList:
description: 'Filters out specific directories following a minimatch pattern.'
required: false
detectorArgs:
description: 'Comma separated list of properties that can affect the detectors execution, like EnableIfDefaultOff that allows a specific detector that is in beta to run, the format for this property is DetectorId=EnableIfDefaultOff, for example Pip=EnableIfDefaultOff.'
required: false
dockerImagesToScan:
description: 'Comma separated list of docker image names or hashes to execute container scanning on, ex: ubuntu:16.04,56bab49eef2ef07505f6a1b0d5bd3a601dfc3c76ad4460f24c91d6fa298369ab'
required: false
2025-06-12 11:46:07 +01:00
detectorsFilter:
2023-01-22 19:46:41 +00:00
description: 'A comma separated list with the identifiers of the specific detectors to be used. This is meant to be used for testing purposes only.'
required: false
2025-06-12 11:46:07 +01:00
detectorsCategories:
description: 'A comma separated list with the categories of components that are going to be scanned. The detectors that are going to run are the ones that belongs to the categories. The possible values are: Npm, NuGet, Maven, RubyGems, Cargo, Pip, GoMod, CocoaPods, Linux.'
required: false
2025-04-03 05:21:10 +00:00
correlator:
description: 'An optional identifier to distinguish between multiple dependency snapshots of the same type.'
required: false
2025-06-16 11:03:28 +01:00
detector-name:
description: 'The name of the detector. If provided, detector-version and detector-url must also be provided.'
required: false
detector-version:
description: 'The version of the detector. If provided, detector-name and detector-url must also be provided.'
required: false
detector-url:
description: 'The URL of the detector. If provided, detector-name and detector-version must also be provided.'
required: false
2022-08-25 09:12:00 -07:00
runs:
2025-04-07 17:11:32 +01:00
using: 'node20'
2022-08-25 09:12:00 -07:00
main: 'dist/index.js'
2022-08-25 11:50:14 -07:00
branding:
icon: 'upload-cloud'
color: 'blue'