This repository has been archived by the owner on Dec 10, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 10
/
action.yml
55 lines (55 loc) · 2.41 KB
/
action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
name: 'Sonatype Lifecycle GitHub Action'
author: 'Sonatype Community'
description: 'Run a Sonatype Lifecycle policy evaluation as part of your GitHub Actions workflow.'
inputs:
serverUrl:
description: 'Sonatype Lifecycle Server URL'
required: true
username:
description: 'Username to connect to Sonatype Lifecycle Server for policy evaluation. Can be the first part of a User Token.'
required: true
password:
description: 'Password to connect to Sonatype Lifecycle Server for policy evaluation. Can be the second part of a User Token.'
required: true
applicationId:
description: 'Determines the policy elements (policies, labels, and license threat groups) to associate with this build, and is managed via the Sonatype Lifecycle Server.'
required: true
stage:
description: 'Controls the stage the policy evaluation will be run against on the Sonatype Lifecycle Server.'
required: true
default: 'Build'
target:
description: 'The scan target path - can be an archive or directory. Value will be prefixed by `$GITHUB_WORKSPACE`. Default will be the entire GitHub Workspace.'
required: true
default: "/"
debug:
description: 'Whether to enable Debug Logging. Set to `true` to enable. **Not recommended to enable in Production Environments.** *Added in v2.0.0*.'
required: false
default: 'false'
proxy:
description: 'Proxy host in the format <host[:port]> if you need to transit a Proxy to connect to your Sonatype Lifecycle Server. *Added in v2.0.0*.'
required: false
proxyUser:
description: 'Proxy username and password in the format <username:password> if you need to transit a Proxy to connect to your Sonatype Lifecycle Server and it requires authentication. *Added in v2.0.0*.'
required: false
writePolicyEvaluationJson:
description: 'Whether to keep a copy of the Policy Evaluation JSON file or not. If set to `true`, it will be written to `$GITHUB_WORKSPACE/sonatype-lifecycle-policy-eval.json`. *Added in v2.1.0*.'
required: false
default: 'false'
runs:
using: 'docker'
image: 'Dockerfile'
args:
- ${{ inputs.serverUrl }}
- ${{ inputs.username }}
- ${{ inputs.password }}
- ${{ inputs.applicationId }}
- ${{ inputs.stage }}
- ${{ inputs.target }}
- ${{ inputs.debug }}
- ${{ inputs.proxy }}
- ${{ inputs.proxyUser }}
- ${{ inputs.writePolicyEvaluationJson }}
branding:
icon: 'shield'
color: 'gray-dark'