{"id":7622257,"name":"magmanu/github-workflow-security-scanner","ecosystem":"actions","description":"A GitHub Action that performs static analysis on your workflows","homepage":"","licenses":"other","normalized_licenses":["GPL-1.0+"],"repository_url":"https://github.com/magmanu/github-workflow-security-scanner","keywords_array":["ci-cd","devsecops","github-action","sast","security","security-automation","security-scanner","static-analysis","vulnerability","vulnerability-scanner"],"namespace":"magmanu","versions_count":1,"first_release_published_at":"2023-04-10T23:33:43.000Z","latest_release_published_at":"2023-04-10T23:33:43.000Z","latest_release_number":"v0.1.0","last_synced_at":"2026-01-08T22:43:19.415Z","created_at":"2023-04-22T01:47:21.570Z","updated_at":"2026-01-08T22:43:19.416Z","registry_url":"https://github.com/magmanu/github-workflow-security-scanner","install_command":null,"documentation_url":null,"metadata":{"name":"GitHub Workflow Security Scanner","description":"A GitHub Action that performs static analysis on your workflows","inputs":{"GH_TOKEN":{"description":"Github token","required":true},"SHOULD_BREAK":{"description":"Boolean to determine if CI should break when a vulnerability is found","required":false,"default":false},"TYPE":{"description":"Type of resource to be analysed. Three acceptable values: repo, org, user","default":"repo"},"TARGET":{"description":"Org or user name, or repository with format \"owner/reponame\""},"BRANCH":{"description":"Branch to run the scan on.","default":"HEAD"}},"runs":{"using":"composite","steps":[{"name":"Install Python","uses":"actions/setup-python@v4","with":{"python-version":"3.10"}},{"uses":"actions/checkout@v3","with":{"repository":"magmanu/github-workflow-scanner"}},{"name":"Install Dependencies","run":"pwd\npip install -r requirements.txt\npip install python-dotenv\n","shell":"bash"},{"name":"Run scan","run":"export COUNT=$(python main.py)\necho \"VULN_COUNT=$COUNT\" \u003e\u003e $GITHUB_ENV\nfilename='result.md'\nwhile read line; do echo \"$line\" \u003e\u003e $GITHUB_STEP_SUMMARY; done \u003c $filename\n","env":{"TARGET_TYPE":"repo","TARGET_INPUT":"${{ env.TARGET }}","TOKEN":"${{ inputs.GH_TOKEN }}","TARGET_BRANCH":"${{ inputs.BRANCH }}"},"shell":"bash"},{"name":"Terminate if vuln \u003e 0","env":{"SHOULD_BREAK":"${{ fromJSON(inputs.SHOULD_BREAK) }}","VULN_COUNT":"${{ env.VULN_COUNT }}"},"run":"if ([ $VULN_COUNT -gt 0 ] \u0026\u0026 [ $SHOULD_BREAK = true ])\nthen\n  exit 1\nelse\n  exit 0\nfi\n","shell":"bash"}]},"default_branch":"main","path":null},"repo_metadata":{"uuid":"623233976","full_name":"magmanu/github-workflow-security-scanner","owner":"magmanu","description":"Checks if your GitHub workflows are secure. It's a SAST for Github Workflows.","archived":false,"fork":false,"pushed_at":"2023-07-07T09:37:20.000Z","size":861,"stargazers_count":0,"open_issues_count":3,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2023-07-13T08:37:05.338Z","etag":null,"topics":["ci-cd","devsecops","github-action","sast","security","security-automation","security-scanner","static-analysis","vulnerability","vulnerability-scanner"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/magmanu.png","metadata":{},"created_at":"2023-04-04T00:58:22.000Z","updated_at":"2023-07-13T08:37:05.339Z","dependencies_parsed_at":"2023-04-14T00:06:25.159Z","dependency_job_id":null,"html_url":"https://github.com/magmanu/github-workflow-security-scanner","commit_stats":null,"previous_names":[],"tags_count":1,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/magmanu%2Fgithub-workflow-security-scanner","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/magmanu%2Fgithub-workflow-security-scanner/tags","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/magmanu%2Fgithub-workflow-security-scanner/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/magmanu","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":145721907,"owners_count":6280667,"icon_url":"https://github.com/github.png","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"magmanu","name":"Manu Magalhães","uuid":"89524998","kind":"user","description":"DevSecOps Engineer","email":"","website":null,"location":"UK","twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/89524998?u=16bf44b2b25d8600576c85221116fbc5a60768de\u0026v=4","repositories_count":1,"last_synced_at":"2023-02-21T11:32:03.815Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/magmanu","created_at":"2023-02-21T11:32:03.830Z","updated_at":"2023-02-21T11:32:03.830Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/magmanu","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/magmanu/repositories"},"tags":[{"name":"v0.1.0","sha":"dd796a74712faf18c909718bdc7dfcc9605145fe","kind":"commit","published_at":"2023-04-10T23:33:43.000Z","download_url":"https://codeload.github.com/magmanu/github-workflow-security-scanner/tar.gz/v0.1.0","html_url":"https://github.com/magmanu/github-workflow-security-scanner/releases/tag/v0.1.0","dependencies_parsed_at":"2023-06-02T11:39:54.014Z","dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/magmanu%2Fgithub-workflow-security-scanner/tags/v0.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/magmanu%2Fgithub-workflow-security-scanner/tags/v0.1.0/manifests"}]},"repo_metadata_updated_at":"2023-07-14T10:04:11.201Z","dependent_packages_count":0,"downloads":null,"downloads_period":null,"dependent_repos_count":0,"rankings":{"downloads":null,"dependent_repos_count":41.28870430527571,"dependent_packages_count":0.0,"stargazers_count":48.88358896336198,"forks_count":37.09737749885707,"average":31.81741769187369},"purl":"pkg:githubactions/magmanu/github-workflow-security-scanner","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/actions/magmanu/github-workflow-security-scanner","docker_dependents_count":null,"docker_downloads_count":null,"usage_url":"https://repos.ecosyste.ms/usage/actions/magmanu/github-workflow-security-scanner","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/actions/magmanu/github-workflow-security-scanner/dependencies","status":"removed","funding_links":[],"critical":null,"issue_metadata":{"last_synced_at":"2023-08-09T10:45:10.690Z","issues_count":0,"pull_requests_count":17,"avg_time_to_close_issue":null,"avg_time_to_close_pull_request":691850.8571428572,"issues_closed_count":0,"pull_requests_closed_count":14,"pull_request_authors_count":2,"issue_authors_count":0,"avg_comments_per_issue":null,"avg_comments_per_pull_request":0.4117647058823529,"merged_pull_requests_count":7,"bot_issues_count":0,"bot_pull_requests_count":10,"past_year_issues_count":0,"past_year_pull_requests_count":17,"past_year_avg_time_to_close_issue":null,"past_year_avg_time_to_close_pull_request":691850.8571428572,"past_year_issues_closed_count":0,"past_year_pull_requests_closed_count":14,"past_year_pull_request_authors_count":2,"past_year_issue_authors_count":0,"past_year_avg_comments_per_issue":null,"past_year_avg_comments_per_pull_request":0.4117647058823529,"past_year_bot_issues_count":0,"past_year_bot_pull_requests_count":10,"past_year_merged_pull_requests_count":7},"versions_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/magmanu%2Fgithub-workflow-security-scanner/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/magmanu%2Fgithub-workflow-security-scanner/version_numbers","latest_version_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/magmanu%2Fgithub-workflow-security-scanner/latest_version","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/magmanu%2Fgithub-workflow-security-scanner/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/magmanu%2Fgithub-workflow-security-scanner/related_packages","codemeta_url":"https://packages.ecosyste.ms/api/v1/registries/github%20actions/packages/magmanu%2Fgithub-workflow-security-scanner/codemeta","maintainers":[]}