{"id":7747017,"name":"SecureStackCo/actions-log4j","ecosystem":"actions","description":"Scans your application for the presence of serious vulnerabilities in Log4j","homepage":"","licenses":"gpl-3.0","normalized_licenses":["GPL-3.0"],"repository_url":"https://github.com/SecureStackCo/actions-log4j","keywords_array":["devsecops","github-actions","java","java-vulnerability","java8","jre","log4j","log4j-rce","log4j2","log4js","log4shell","scanning","security","security-automation","security-tools","software-composition-analysis","static-analysis","vulnerabilities","vulnerability-assessment","vulnerability-scanner"],"namespace":"SecureStackCo","versions_count":5,"first_release_published_at":"2022-02-01T08:24:45.000Z","latest_release_published_at":"2022-02-02T12:04:41.000Z","latest_release_number":"v0.1.4","last_synced_at":"2026-05-25T06:46:16.339Z","created_at":"2023-05-17T11:14:43.400Z","updated_at":"2026-05-25T06:46:16.339Z","registry_url":"https://github.com/SecureStackCo/actions-log4j","install_command":null,"documentation_url":null,"metadata":{"name":"SecureStack Log4j Vulnerability Analysis","description":"Scans your application for the presence of serious vulnerabilities in Log4j","branding":{"icon":"shield","color":"green"},"inputs":{"securestack_api_key":{"description":"SecureStack API key - generate an API key at https://app.securestack.com","required":true},"securestack_app_id":{"description":"SecureStack Application ID - can be retrieved by accessing required application at https://app.securestack.com","required":true},"severity":{"description":"Severities lower than this value will be reported in the workflow console but will not cause an error for the action; value should be one of: critical | high | medium | low","required":true}},"runs":{"using":"composite","steps":[{"name":"Pull bloodhound-cli image","shell":"bash","run":"docker pull securestackau/bloodhound-cli"},{"name":"Run bloodhound-cli","shell":"bash","env":{"BH_API_KEY":"${{ inputs.securestack_api_key }}","BH_APP_ID":"${{ inputs.securestack_app_id }}","BH_SEVERITY":"${{ inputs.severity }}"},"run":"docker run -e BH_API_KEY -e BH_APP_ID -e BH_SEVERITY -v $GITHUB_WORKSPACE:/github/workspace securestackau/bloodhound-cli code -t java -a $BH_APP_ID; echo $?"}]},"default_branch":"main","path":null},"repo_metadata":{"uuid":"454308997","full_name":"SecureStackCo/actions-log4j","owner":"SecureStackCo","description":"A GitHub Action that scans your public web applications for log4j vulnerabilities after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.","archived":false,"fork":false,"pushed_at":"2022-04-09T10:29:38.000Z","size":1556,"stargazers_count":14,"open_issues_count":0,"forks_count":2,"subscribers_count":6,"default_branch":"main","last_synced_at":"2023-07-14T08:46:39.684Z","etag":null,"topics":["devsecops","github-actions","java","java-vulnerability","java8","jre","log4j","log4j-rce","log4j2","log4js","log4shell","scanning","security","security-automation","security-tools","software-composition-analysis","static-analysis","vulnerabilities","vulnerability-assessment","vulnerability-scanner"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/SecureStackCo.png","metadata":{},"created_at":"2022-02-01T08:19:36.000Z","updated_at":"2023-06-19T13:53:12.000Z","dependencies_parsed_at":"2023-01-04T12:35:00.082Z","dependency_job_id":null,"html_url":"https://github.com/SecureStackCo/actions-log4j","commit_stats":null,"previous_names":[],"tags_count":5,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/SecureStackCo","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":152932033,"owners_count":7128057,"icon_url":"https://github.com/github.png","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"SecureStackCo","name":"SecureStackCo","uuid":"33912135","kind":"organization","description":"SecureStack is the world's first security platform built by developers, for developers","email":"hello@securestack.com","website":"https://securestack.com","location":"Australia","twitter":"securestackco","company":null,"icon_url":"https://avatars.githubusercontent.com/u/33912135?v=4","repositories_count":10,"last_synced_at":"2023-03-10T00:36:24.238Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/SecureStackCo","created_at":"2022-11-19T16:23:03.258Z","updated_at":"2023-03-10T00:36:24.303Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/SecureStackCo","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/SecureStackCo/repositories"},"tags":[{"name":"v0.1.4","sha":"fd6818bfdb7c4b73a430bc4bc3b3086812a06e46","kind":"commit","published_at":"2022-02-02T12:04:41.000Z","download_url":"https://codeload.github.com/SecureStackCo/actions-log4j/tar.gz/v0.1.4","html_url":"https://github.com/SecureStackCo/actions-log4j/releases/tag/v0.1.4","dependencies_parsed_at":"2023-06-01T12:56:05.329Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/tags/v0.1.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/tags/v0.1.4/manifests"},{"name":"v0.1.3","sha":"913dc223442a02b0d23ed97321cecf23b5db09d0","kind":"commit","published_at":"2022-02-02T00:52:57.000Z","download_url":"https://codeload.github.com/SecureStackCo/actions-log4j/tar.gz/v0.1.3","html_url":"https://github.com/SecureStackCo/actions-log4j/releases/tag/v0.1.3","dependencies_parsed_at":"2023-06-01T12:56:05.700Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/tags/v0.1.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/tags/v0.1.3/manifests"},{"name":"v0.1.2","sha":"197a0edf816cf084aa362c77f9f442c1a7d1c399","kind":"commit","published_at":"2022-02-01T08:40:14.000Z","download_url":"https://codeload.github.com/SecureStackCo/actions-log4j/tar.gz/v0.1.2","html_url":"https://github.com/SecureStackCo/actions-log4j/releases/tag/v0.1.2","dependencies_parsed_at":"2023-06-01T12:56:05.905Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/tags/v0.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/tags/v0.1.2/manifests"},{"name":"v0.1.1","sha":"d2bd7b68bc4e66991cbed3b9157719e6fa56fcf3","kind":"commit","published_at":"2022-02-01T08:34:29.000Z","download_url":"https://codeload.github.com/SecureStackCo/actions-log4j/tar.gz/v0.1.1","html_url":"https://github.com/SecureStackCo/actions-log4j/releases/tag/v0.1.1","dependencies_parsed_at":"2023-06-01T12:56:06.129Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/tags/v0.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/tags/v0.1.1/manifests"},{"name":"v0.1.0","sha":"5d8333e1beb58832aa989c09aba30f34836ee090","kind":"commit","published_at":"2022-02-01T08:24:45.000Z","download_url":"https://codeload.github.com/SecureStackCo/actions-log4j/tar.gz/v0.1.0","html_url":"https://github.com/SecureStackCo/actions-log4j/releases/tag/v0.1.0","dependencies_parsed_at":"2023-06-01T12:56:06.339Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/tags/v0.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SecureStackCo%2Factions-log4j/tags/v0.1.0/manifests"}]},"repo_metadata_updated_at":"2023-08-15T15:45:47.557Z","dependent_packages_count":0,"downloads":null,"downloads_period":null,"dependent_repos_count":1,"rankings":{"downloads":null,"dependent_repos_count":24.775788306132153,"dependent_packages_count":0.0,"stargazers_count":9.139597528125496,"forks_count":16.162256377753128,"docker_downloads_count":null,"average":12.519410553002693},"purl":"pkg:githubactions/SecureStackCo/actions-log4j","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/actions/SecureStackCo/actions-log4j","docker_dependents_count":null,"docker_downloads_count":null,"usage_url":"https://repos.ecosyste.ms/usage/actions/SecureStackCo/actions-log4j","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/actions/SecureStackCo/actions-log4j/dependencies","status":null,"funding_links":[],"critical":null,"issue_metadata":null,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/SecureStackCo%2Factions-log4j/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/SecureStackCo%2Factions-log4j/version_numbers","latest_version_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/SecureStackCo%2Factions-log4j/latest_version","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/SecureStackCo%2Factions-log4j/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/SecureStackCo%2Factions-log4j/related_packages","codemeta_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/SecureStackCo%2Factions-log4j/codemeta","maintainers":[]}