[Snyk] Fix for 2 vulnerabilities #36

Summary
Jobs
- scanning
Run details
- Usage
- Workflow file

Workflow file for this run

.github/workflows/Securin-aspm.yaml at 495ab7d

	---
	name: Securin-ASPM
	on:
	pull_request:
	branches:
	- main
	workflow_dispatch:
	inputs:
	logLevel:
	description: Log level
	jobs:
	scanning:
	env:
	APP_ID: f9354766f9ecd30262dda9d35a12ffc58225f9ba740121274e08121c48744310
	BRANCH_NAME: main
	SCAN_ID: 2b1748b85aea45431f5110978cf1aa775d14cffbe04c3b77af2e1ca93f9fb187
	REQ_URL_MAP: "${{toJSON('{\"SL_RESULT_API_HOST\":\"https://slresultapi.securin.io/resultapi\"\
	,\"SL_RESULTPARSER_API_HOST\":\"https://slresultparserapi.securin.io/resultparserapi\"\
	}')}}"
	steps:
	- name: Retrieve Token Info
	id: auth_token
	run: "respJson=$(curl --location --request GET 'https://slresultapi.securin.io/resultapi/aws/ecr/token'\
	\ --header 'X-ASPM-Auth-Key: ${{secrets.ORG_API_KEY}}' --data-raw ' ' )\
	\ \necho \"authTokenJson=$respJson\" >> $GITHUB_OUTPUT"
	- uses: actions/checkout@v3
	- name: Scan Initiated
	id: sec_scan_init
	run: "usrVal=$(echo '${{fromJson(steps.auth_token.outputs.authTokenJson).user}}'\
	\ \| openssl enc -aes-256-cbc -d -a -K ${{secrets.ENC_KEY}} -iv ${{secrets.ENC_IV}}\
	\ ) \nusrPassword=$(echo '${{fromJson(steps.auth_token.outputs.authTokenJson).password}}'\
	\ \| openssl enc -aes-256-cbc -d -base64 -A -K ${{secrets.ENC_KEY}} -iv ${{secrets.ENC_IV}}\
	\ ) \nusrPrxyUrl=$(echo '${{fromJson(steps.auth_token.outputs.authTokenJson).proxyUrl}}'\
	\ \| openssl enc -aes-256-cbc -d -a -K ${{secrets.ENC_KEY}} -iv ${{secrets.ENC_IV}}\
	\ ) \nusrImgTag=$(echo '${{fromJson(steps.auth_token.outputs.authTokenJson).imageTag}}'\
	\ \| openssl enc -aes-256-cbc -d -a -K ${{secrets.ENC_KEY}} -iv ${{secrets.ENC_IV}}\
	\ ) \ndocker login --username $usrVal --password $usrPassword $usrPrxyUrl\
	\ \ndocker pull -q $usrImgTag \ndocker run -v ${{github.workspace}}:/src \
	\ --volume ${{github.workspace}}:/workdir -v /var/run/docker.sock:/var/run/docker.sock\
	\ $usrImgTag -org_api_key ${{secrets.ORG_API_KEY}} -app_id ${{ env.APP_ID\
	\ }} -scan_id ${{ env.SCAN_ID }} -branch_name ${{ env.BRANCH_NAME }} -req_url_map\
	\ ${{ env.REQ_URL_MAP }} -tool_name github event:${{ github.event_name }}\
	\ pr_number:${{ github.event.number }} -upload_log true"
	- name: Upload SARIF file
	uses: github/codeql-action/upload-sarif@v2
	with:
	sarif_file: "${{github.workspace}}/results/result.sarif"
	if: hashFiles('**/result.sarif') !=''
	- name: Evaluate build status
	run: "cat ${{github.workspace}}/results/status.txt\nexit 1\n"
	if: hashFiles('**/status.txt') !=''
	runs-on: ubuntu-latest

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Fix for 2 vulnerabilities #36

Workflow file

[Snyk] Fix for 2 vulnerabilities #36

Jobs

Run details

Workflow file for this run