Skip to content
/ secscan-demo Public

Security scanning demo project

License

MIT license
0 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

swisstxt/secscan-demo

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

41 Commits
.github/workflows
.github/workflows
 
 
bicep
bicep
 
 
go
go
 
 
python
python
 
 
terraform
terraform
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Code Vulnerability Scanning Demo

This is a demo project to test automatic code scanning and reporting

⚠️ Not for production use.

Results are available in Action log, but are also pushed to GitHub code scanning alerts if Advanced Security is available. Checks will not fail if pushing is not possible (due to missing license etc).

Supported Scanners

Examples

Go

  • gosec: Static code analysis, reports known bad code patterns
  • govulncheck: Depedency vulnerability reporting based on static code analysis (can also scan compiled binaries)
  • CodeQL: Static analysis

Python

  • bandit: Static analysis
  • CodeQL: Static analysis
  • pip-audit: Dependency vulnerability reporting

Terraform

  • tfsec: Best practice and risk scanning
  • checkov: Best practice and risk scanning

Bicep

  • checkov: Best practice and risk scanning

About

Security scanning demo project

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages