Skip to content

Commit

Permalink
add some exclusions to SCA workflow
Browse files Browse the repository at this point in the history
  • Loading branch information
@miguelfreitas93
miguelfreitas93 committed Jun 16, 2020
1 parent 2ffda0b commit 9f52fc5
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 1 deletion.
1 change: 1 addition & 0 deletions .github/workflows/cx-2020.2.11-sca-scan.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,7 @@ jobs:
cxScaAccount: ${{ secrets.CX_SCA_ACCOUNT }}
cxScaUsername: ${{ secrets.CX_SCA_USERNAME }}
cxScaPassword: ${{ secrets.CX_SCA_PASSWORD }}
cxScaPathExclude: coverage,images
cxExecutePackageDependency: true
cxVersion: "2020.2.11"
cxLog: log.log
Expand Down
3 changes: 2 additions & 1 deletion .gitignore
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,4 +7,5 @@ cxcli
cxcli.zip
log.log
report.xml
report.json
report.json
OSADependencies.json

1 comment on commit 9f52fc5

@github-actions
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[Checkmarx] - Project : checkmarx-github-action-master - Scan ID : 1000073

Project Details
Checkmarx Version: 9.0.0.40085 HF1
Project ID: 6
Project Name: checkmarx-github-action-master
Preset: Checkmarx Default
Owner: miguel
Team: CxServer\SP\EMEA

Scan Details
Initiator Name: Miguel Freitas
Scan ID: 1000073
LOC: 5109
Files Scanned: 14
Scan Type: Full
Scan URL: https://cxprivatecloud.checkmarx.net/CxWebClient/ViewerMain.aspx?scanid=1000073&projectid=6
Scan Comment: Attempt to perform scan on 6/16/2020 3:02:01 PM - No code changes were detected; git master@2ffda0b5ab60a01893ad7eb6feb120c3fa8c8be8
Scan Type: 00h:00m:00s
Scan Start Date: Tue Jun 16 2020 15:02:01 GMT+0000 (Coordinated Universal Time)
Scan Time: 00h:00m:00s
Source Origin: LocalPath
Visibility: Public

Result Summary Details

Results By Status

New Recurrent Resolved Reopened Total
0 3 0 0 3

Results By State and Severity

Severity \ State Confirmed Urgent Proposed Not Exploitable To Verify Not Exploitable Total
High 0 0 0 0 0 0
Medium 0 0 0 0 0 0
Low 0 0 0 0 3 3
Info 0 0 0 0 0 0
Total 0 0 0 0 3 3

Results By Queries

Queries Total Results
Use_Of_Hardcoded_Password 2
Client_Server_Empty_Password 1

Results By Languages

Languages Total Results
JavaScript 3

Vulnerabilities in Files:
https://github.com/checkmarx-ts/checkmarx-github-action/blob/9f52fc57c3a771b95c7e3fec6cedeab73310edba/src/github/inputs.js
https://github.com/checkmarx-ts/checkmarx-github-action/blob/9f52fc57c3a771b95c7e3fec6cedeab73310edba/src/cli/token.js

Please sign in to comment.