Add Appknox starter workflow (#2447)
* Added appknox.yml for code scanning * Create appknox.json * Create appknox.svg * Update appknox.json * Update appknox.svg * Rename appknox.json to appknox.properties.json * Update appknox.yml * Update appknox.yml * Update appknox.properties.json * Formatting yml
This commit is contained in:
@@ -0,0 +1,56 @@
|
||||
# This workflow uses actions that are not certified by GitHub. They are provided by a third-party and are governed by
|
||||
# separate terms of service, privacy policy, and support documentation.
|
||||
#
|
||||
# Appknox: Leader in Mobile Application Security Testing Solutions <https://www.appknox.com/>
|
||||
#
|
||||
# To use this workflow, you must be an existing Appknox customer with GitHub Advanced Security (GHAS) enabled for your
|
||||
# repository.
|
||||
#
|
||||
# If you *are not* an existing customer, click here to contact us for licensing and pricing details:
|
||||
# <https://www.appknox.com/free-trial>.
|
||||
#
|
||||
# Instructions:
|
||||
#
|
||||
# 1. In your repository settings, navigate to 'Secrets' and click on 'New repository secret.' Name the
|
||||
# secret APPKNOX_ACCESS_TOKEN and paste your appknox user token into the value field. If you don't have a appknox token
|
||||
# or need to generate a new one for GitHub, visit the Appknox Platform, go to Account Settings->Developer Settings
|
||||
# and create a token labeled GitHub
|
||||
#
|
||||
# 2. Refer to the detailed workflow below, make any required adjustments, and then save it to your repository. After the
|
||||
# action executes, check the 'Security' tab for results
|
||||
|
||||
name: Appknox
|
||||
|
||||
on:
|
||||
push:
|
||||
branches: [ $default-branch, $protected-branches ]
|
||||
pull_request:
|
||||
branches: [ $default-branch ]
|
||||
jobs:
|
||||
appknox:
|
||||
runs-on: ubuntu-latest
|
||||
steps:
|
||||
- uses: actions/checkout@v2
|
||||
- name: Set up JDK 1.8
|
||||
uses: actions/setup-java@v1
|
||||
with:
|
||||
java-version: 1.8
|
||||
- name: Grant execute permission for gradlew
|
||||
run: chmod +x gradlew
|
||||
|
||||
- name: Build the app
|
||||
run: ./gradlew build # Update this to build your Android or iOS application
|
||||
|
||||
- name: Appknox GitHub action
|
||||
uses: appknox/appknox-github-action@b7d2bfb2321d5544e97bffcba48557234ab953a4
|
||||
with:
|
||||
appknox_access_token: ${{ secrets.APPKNOX_ACCESS_TOKEN }}
|
||||
file_path: app/build/outputs/apk/debug/app-debug.apk # Specify the path to your .ipa or .apk here
|
||||
risk_threshold: MEDIUM # Update this to desired risk threshold [LOW, MEDIUM, HIGH, CRITICAL]
|
||||
sarif: Enable
|
||||
|
||||
- name: Upload SARIF to GHAS
|
||||
if: always()
|
||||
uses: github/codeql-action/upload-sarif@v3
|
||||
with:
|
||||
sarif_file: report.sarif
|
||||
@@ -0,0 +1,23 @@
|
||||
{
|
||||
"name": "Appknox",
|
||||
"creator": "Appknox",
|
||||
"description": "Use Appknox action for faster and precise security assessments of your iOS and Android apps developed using any programming language",
|
||||
"iconName": "appknox",
|
||||
"categories": [
|
||||
"Code Scanning",
|
||||
"Java",
|
||||
"Kotlin",
|
||||
"Scala",
|
||||
"Swift",
|
||||
"Objective C",
|
||||
"C",
|
||||
"C++",
|
||||
"C#",
|
||||
"Rust",
|
||||
"JavaScript",
|
||||
"TypeScript",
|
||||
"Node"
|
||||
],
|
||||
"labels": ["preview"]
|
||||
|
||||
}
|
||||
@@ -0,0 +1,10 @@
|
||||
<svg width="913" height="747" viewBox="0 0 913 747" fill="none" xmlns="http://www.w3.org/2000/svg">
|
||||
<g clip-path="url(#clip0_2_25)">
|
||||
<path d="M817.216 165.78L347 167L346.464 167.121C302.41 170.874 261.309 190.92 231.128 223.377C194.908 261.674 176.798 311.72 176.798 373.515C176.798 433.583 195.14 482.876 231.826 521.397C268.51 559.916 314.412 579.177 369.531 579.177C425.944 579.177 472.27 560.141 508.51 522.068C544.751 483.994 562.881 434.476 562.901 373.515C562.901 316.466 546.511 269.267 514.337 231.67H714.02C732.426 276.89 741.8 325.304 741.61 374.155C741.849 439.763 724.656 504.245 691.807 560.949C658.956 617.653 611.637 664.522 554.736 696.719C497.519 729.853 432.598 747.199 366.557 747C274.247 747 192.57 714.792 121.528 650.375C40.5904 576.382 0.121582 483.892 0.121582 372.906C0.121582 269.236 35.9768 181.197 107.687 108.792C179.399 36.386 265.961 0.142345 367.375 0.0610352C376.906 0.0610352 384.554 0.396444 388.896 0.640372H391.657C392.719 0.640372 595.954 0.853638 911.337 1.03659L817.216 165.78Z" fill="#FF4D3F"/>
|
||||
</g>
|
||||
<defs>
|
||||
<clipPath id="clip0_2_25">
|
||||
<rect width="913" height="747" fill="white"/>
|
||||
</clipPath>
|
||||
</defs>
|
||||
</svg>
|
||||
|
After Width: | Height: | Size: 1.1 KiB |
Reference in New Issue
Block a user