actions/goscan
1
0
Fork 0
Code Issues 2 Pull requests Projects Releases 2 Packages Wiki Activity Actions

download gosec at build
All checks were successful
Gosec Check / Gosec Check (push) Successful in 24s
Details

Browse source
This commit is contained in:
Shane C 2024-09-08 14:57:55 -04:00
parent f61b55a7dd
commit 85b8899056
Signed by: shanec
GPG key ID: E46B5FEA35B22FF9
2 changed files with 5 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
Dockerfile
View file

@ -14,7 +14,11 @@ RUN wget https://go.dev/dl/go1.23.1.linux-amd64.tar.gz && tar -xf go1.23.1.linux
COPY --from=builder /app/build/goscan /goscan COPY --from=builder /app/build/goscan /goscan
COPY ./entrypoint.sh /entrypoint.sh COPY ./entrypoint.sh /entrypoint.sh
COPY --from=builder /app . COPY --from=builder /app .
RUN chmod +x /goscan && chmod +x /entrypoint.sh RUN chmod +x /goscan && chmod +x /entrypoint.sh
RUN curl -sfL https://raw.githubusercontent.com/securego/gosec/master/install.sh | sh -s -- -b /usr/local/bin
USER nobody
ENV PATH="/usr/local/go/bin:${PATH}"
ENTRYPOINT ["/entrypoint.sh"] ENTRYPOINT ["/entrypoint.sh"]

2
entrypoint.sh
View file

@ -1,6 +1,4 @@
#!/bin/sh #!/bin/sh
curl -sfL https://raw.githubusercontent.com/securego/gosec/master/install.sh | sh -s -- -b /usr/local/bin
# gosec -r -no-fail -fmt sarif -out output.sarif "$PWD"
/goscan --is-action /goscan --is-action
cat output.sarif cat output.sarif