Skip to content

GrantBirki/auditor-action-core

Use this GitHub action with your project
Add this Action to an existing workflow or create a new one
View on Marketplace
BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

237 Commits

.github

.github

 
 

config

config

 
 

dist

dist

 
 

docs/assets

docs/assets

 
 

results

results

 
 

script

script

 
 

src

src

 
 

test

test

 
 

.babelrc

.babelrc

 
 

.eslintignore

.eslintignore

 
 

.eslintrc.json

.eslintrc.json

 
 

.gitattributes

.gitattributes

 
 

.gitignore

.gitignore

 
 

.node-version

.node-version

 
 

.prettierignore

.prettierignore

 
 

.prettierrc.json

.prettierrc.json

 
 

CONTRIBUTING.md

CONTRIBUTING.md

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

SECURITY.md

SECURITY.md

 
 

action.yml

action.yml

 
 

package-lock.json

package-lock.json

 
 

package.json

package.json

 
 

Repository files navigation

auditor-action-core ⚙️

CodeQL Check dist/

The Action you are probably looking for is auditor-action

The core of the auditor-action. This is the package that does the heavy lifting. It is not meant to be used directly, but rather as a dependency of the auditor-action

About 💡

This package is the core of the auditor-action. It works by doing the following:

  1. Loads the auditor.yml configuration file
  2. Loads the Git Diff in JSON format from the git-diff-action
  3. Uses the config file to process the JSON git diff and looks for violations
  4. Reports the violations as a comment on the PR depending on what environment variables are set

Inputs 📥

Name Required? Default Description
github_token yes ${{ github.token }} The GitHub token to use for the Action - included for you by default!
annotate_pr no "true" Whether or not to annotate the PR with the violations
github_base_url yes https://github.com The base URL for the GitHub instance you are using
json_diff_path yes diff.json The path to the JSON diff file to load
config_path yes config/auditor.yml The path to the auditor.yml configuration file
annotate_name yes The Auditor The name of the annotation to name to use
annotate_title yes The Auditor has detected findings in your pull request The title of the annotation to use
annotate_summary yes Please review the findings and make any necessary changes The summary of the annotation to use
annotate_status yes completed The status of the annotation to use
write_results_path no "" The path to write the markdown results to (for custom reporting) - Leave unset to disable writing results to a file

Outputs 📤

Name Description
passed Whether or not the audit passed - 'true' or 'false'
violation_count The number of violations found

Configuration 📝

To view the full list of configuration options, see the auditor-action's section on configuration

Annotations ✅

By default, this Action will leave annotations on pull requests with any findings. You can disable this by setting the annotate_pr input to false. If you do not want to use the default annotation settings, you can override them with the annotate_name, annotate_title, annotate_summary, and annotate_status inputs.

Example Annotation 📸

Annotation Example

Permissions 🛡

️If you are using the annotate_pr option, you will need to provide the GITHUB_TOKEN with the checks: write permission. This is because the GITHUB_TOKEN provided by GitHub Actions does not have the necessary permissions to annotate PRs. If you are not using the annotate_pr option, you do not need to worry about this.

You will likely also need:

  • pull-requests: write
  • contents: read
  • actions: read

About

The Auditor Action's Core Engine

Topics

security ci actions auditor compliance-as-code

Resources

Readme

License

MIT license

Security policy

Security policy
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases 23

v3.1.1 Latest
Apr 4, 2024
+ 22 releases

Contributors 2

  •  
  •  

Languages