Skip to content
GitLab
Explore
Sign in
Register
Primary navigation
Search or go to…
Project
A
ATI-OS
Manage
Activity
Members
Labels
Plan
Issues
Issue boards
Milestones
Wiki
Code
Merge requests
Repository
Branches
Commits
Tags
Repository graph
Compare revisions
Snippets
Build
Pipelines
Jobs
Pipeline schedules
Artifacts
Deploy
Releases
Package Registry
Container Registry
Model registry
Operate
Environments
Terraform modules
Monitor
Incidents
Service Desk
Analyze
Value stream analytics
Contributor analytics
CI/CD analytics
Repository analytics
Model experiments
Help
Help
Support
GitLab documentation
Compare GitLab plans
Community forum
Contribute to GitLab
Provide feedback
Keyboard shortcuts
?
Snippets
Groups
Projects
Show more breadcrumbs
Michal D.
ATI-OS
Commits
0896a6e4
Unverified
Commit
0896a6e4
authored
1 year ago
by
Michal D
Committed by
GitHub
1 year ago
Browse files
Options
Downloads
Patches
Plain Diff
Zscan workflow
Zscan code check
parent
d2215ec3
No related branches found
Branches containing commit
No related tags found
1 merge request
!3
Update
Changes
1
Hide whitespace changes
Inline
Side-by-side
Showing
1 changed file
.github/workflows/zscan.yml
+60
-0
60 additions, 0 deletions
.github/workflows/zscan.yml
with
60 additions
and
0 deletions
.github/workflows/zscan.yml
0 → 100644
+
60
−
0
View file @
0896a6e4
# This workflow uses actions that are not certified by GitHub.
# They are provided by a third-party and are governed by
# separate terms of service, privacy policy, and support
# documentation.
#
# The zimperium-zscan GitHub action scans your mobile app binary (iOS or Android)
# and identifies security, privacy, and compliance-related vulnerabilities.
#
# Prerequisites:
# * An active Zimperium zScan account is required. If you are not an existing Zimperium
# zScan customer, please request a zSCAN demo by visiting https://www.zimperium.com/contact-us.
# * Either GitHub Advanced Security (GHAS) or a public repository is required to display
# issues and view the remediation information inside of GitHub code scanning alerts.
#
# For additional information and setup instructions
# please visit: https://github.com/Zimperium/zScanMarketplace#readme
name
:
"
Zimperium
zScan"
on
:
push
:
branches
:
[
"
main"
,
"
Dev"
]
pull_request
:
branches
:
[
"
main"
]
permissions
:
contents
:
read
jobs
:
zscan
:
name
:
zScan
runs-on
:
ubuntu-latest
permissions
:
contents
:
read
# for actions/checkout to fetch code
security-events
:
write
# for github/codeql-action/upload-sarif to upload SARIF results
actions
:
read
# only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
steps
:
-
name
:
Checkout repository
uses
:
actions/checkout@v3
-
name
:
Execute gradle build
run
:
./gradlew build
# Change this to build your mobile application
-
name
:
Run Zimperium zScan
uses
:
zimperium/zscanmarketplace@bfc6670f6648d796098c251ccefcfdb98983174d
timeout-minutes
:
60
with
:
# REPLACE: Zimperium Client Environment Name
client_env
:
env_string
# REPLACE: Zimperium Client ID
client_id
:
id_string
# REPLACE: Zimperium Client Secret
client_secret
:
${{ secrets.ZSCAN_CLIENT_SECRET }}
# REPLACE: The path to an .ipa or .apk
app_file
:
app-release-unsigned.apk
-
name
:
Upload SARIF file
uses
:
github/codeql-action/upload-sarif@v2
with
:
sarif_file
:
Zimperium.sarif
This diff is collapsed.
Click to expand it.
Preview
0%
Loading
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Save comment
Cancel
Please
register
or
sign in
to comment
