├── .github └── workflows │ ├── build_and_test.yml │ ├── build_executables.yml │ ├── manual.yml │ └── manual_test_repo.yml ├── .gitignore ├── .npmignore ├── .vscode └── settings.json ├── LICENSE ├── README.md ├── action.yml ├── dist ├── fsevents.node ├── index.js ├── index.js.map ├── sourcemap-register.js └── templates │ ├── executive_summary.html │ ├── summary.html │ ├── summary_old.html │ └── vulnerability.html ├── package.json ├── samples ├── __old_to_remove │ ├── cplusplus_scan.json │ ├── cpp_scan.json │ ├── java_result.json │ ├── javascript_scan.json │ ├── report.json │ ├── sample_data.json │ ├── summary │ │ └── small.json │ └── vulnerabilities.json ├── reportJson │ ├── octodemo │ │ └── ghas-reporting │ │ │ ├── payload.json │ │ │ └── summary.html │ └── peter-murray │ │ └── advanced-security-java │ │ └── payload.json └── sarif │ ├── java │ ├── basic │ │ └── java.sarif │ └── detailed │ │ └── java.sarif │ └── peter-murray │ └── advanced-security-java │ ├── java-builtin.sarif │ └── javascript-builtin.sarif ├── src ├── DataCollector.ts ├── ReportGenerator.test.ts ├── ReportGenerator.ts ├── codeScanning │ ├── CodeScanningAlert.ts │ ├── CodeScanningResults.ts │ ├── GitHubCodeScanning.test.ts │ └── GitHubCodeScanning.ts ├── dependencies │ ├── Dependency.ts │ ├── DependencySet.ts │ ├── DependencyTypes.ts │ ├── GitHubDependencies.test.ts │ ├── GitHubDependencies.ts │ └── Vulnerability.ts ├── executable.ts ├── index.ts ├── pdf │ ├── pdfWriter.test.ts │ └── pdfWriter.ts ├── sarif │ ├── CodeScanningResult.ts │ ├── CodeScanningRule.ts │ ├── SarifDataTypes.ts │ ├── SarifReport.ts │ └── SarifReportFinder.ts ├── templating │ ├── ReportData.ts │ ├── ReportTypes.ts │ ├── Template.test.ts │ └── Template.ts └── testUtils.ts ├── summary_report_example.png ├── templates ├── executive_summary.html ├── summary.html ├── summary_old.html └── vulnerability.html └── tsconfig.json /.github/workflows/build_and_test.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/.github/workflows/build_and_test.yml -------------------------------------------------------------------------------- /.github/workflows/build_executables.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/.github/workflows/build_executables.yml -------------------------------------------------------------------------------- /.github/workflows/manual.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/.github/workflows/manual.yml -------------------------------------------------------------------------------- /.github/workflows/manual_test_repo.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/.github/workflows/manual_test_repo.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/.gitignore -------------------------------------------------------------------------------- /.npmignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/.npmignore -------------------------------------------------------------------------------- /.vscode/settings.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/.vscode/settings.json -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/README.md -------------------------------------------------------------------------------- /action.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/action.yml -------------------------------------------------------------------------------- /dist/fsevents.node: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/dist/fsevents.node -------------------------------------------------------------------------------- /dist/index.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/dist/index.js -------------------------------------------------------------------------------- /dist/index.js.map: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/dist/index.js.map -------------------------------------------------------------------------------- /dist/sourcemap-register.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/dist/sourcemap-register.js -------------------------------------------------------------------------------- /dist/templates/executive_summary.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/dist/templates/executive_summary.html -------------------------------------------------------------------------------- /dist/templates/summary.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/dist/templates/summary.html -------------------------------------------------------------------------------- /dist/templates/summary_old.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/dist/templates/summary_old.html -------------------------------------------------------------------------------- /dist/templates/vulnerability.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/dist/templates/vulnerability.html -------------------------------------------------------------------------------- /package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/package.json -------------------------------------------------------------------------------- /samples/__old_to_remove/cplusplus_scan.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/__old_to_remove/cplusplus_scan.json -------------------------------------------------------------------------------- /samples/__old_to_remove/cpp_scan.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/__old_to_remove/cpp_scan.json -------------------------------------------------------------------------------- /samples/__old_to_remove/java_result.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/__old_to_remove/java_result.json -------------------------------------------------------------------------------- /samples/__old_to_remove/javascript_scan.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/__old_to_remove/javascript_scan.json -------------------------------------------------------------------------------- /samples/__old_to_remove/report.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/__old_to_remove/report.json -------------------------------------------------------------------------------- /samples/__old_to_remove/sample_data.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/__old_to_remove/sample_data.json -------------------------------------------------------------------------------- /samples/__old_to_remove/summary/small.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/__old_to_remove/summary/small.json -------------------------------------------------------------------------------- /samples/__old_to_remove/vulnerabilities.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/__old_to_remove/vulnerabilities.json -------------------------------------------------------------------------------- /samples/reportJson/octodemo/ghas-reporting/payload.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/reportJson/octodemo/ghas-reporting/payload.json -------------------------------------------------------------------------------- /samples/reportJson/octodemo/ghas-reporting/summary.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/reportJson/octodemo/ghas-reporting/summary.html -------------------------------------------------------------------------------- /samples/reportJson/peter-murray/advanced-security-java/payload.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/reportJson/peter-murray/advanced-security-java/payload.json -------------------------------------------------------------------------------- /samples/sarif/java/basic/java.sarif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/sarif/java/basic/java.sarif -------------------------------------------------------------------------------- /samples/sarif/java/detailed/java.sarif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/sarif/java/detailed/java.sarif -------------------------------------------------------------------------------- /samples/sarif/peter-murray/advanced-security-java/java-builtin.sarif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/sarif/peter-murray/advanced-security-java/java-builtin.sarif -------------------------------------------------------------------------------- /samples/sarif/peter-murray/advanced-security-java/javascript-builtin.sarif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/samples/sarif/peter-murray/advanced-security-java/javascript-builtin.sarif -------------------------------------------------------------------------------- /src/DataCollector.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/DataCollector.ts -------------------------------------------------------------------------------- /src/ReportGenerator.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/ReportGenerator.test.ts -------------------------------------------------------------------------------- /src/ReportGenerator.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/ReportGenerator.ts -------------------------------------------------------------------------------- /src/codeScanning/CodeScanningAlert.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/codeScanning/CodeScanningAlert.ts -------------------------------------------------------------------------------- /src/codeScanning/CodeScanningResults.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/codeScanning/CodeScanningResults.ts -------------------------------------------------------------------------------- /src/codeScanning/GitHubCodeScanning.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/codeScanning/GitHubCodeScanning.test.ts -------------------------------------------------------------------------------- /src/codeScanning/GitHubCodeScanning.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/codeScanning/GitHubCodeScanning.ts -------------------------------------------------------------------------------- /src/dependencies/Dependency.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/dependencies/Dependency.ts -------------------------------------------------------------------------------- /src/dependencies/DependencySet.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/dependencies/DependencySet.ts -------------------------------------------------------------------------------- /src/dependencies/DependencyTypes.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/dependencies/DependencyTypes.ts -------------------------------------------------------------------------------- /src/dependencies/GitHubDependencies.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/dependencies/GitHubDependencies.test.ts -------------------------------------------------------------------------------- /src/dependencies/GitHubDependencies.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/dependencies/GitHubDependencies.ts -------------------------------------------------------------------------------- /src/dependencies/Vulnerability.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/dependencies/Vulnerability.ts -------------------------------------------------------------------------------- /src/executable.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/executable.ts -------------------------------------------------------------------------------- /src/index.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/index.ts -------------------------------------------------------------------------------- /src/pdf/pdfWriter.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/pdf/pdfWriter.test.ts -------------------------------------------------------------------------------- /src/pdf/pdfWriter.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/pdf/pdfWriter.ts -------------------------------------------------------------------------------- /src/sarif/CodeScanningResult.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/sarif/CodeScanningResult.ts -------------------------------------------------------------------------------- /src/sarif/CodeScanningRule.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/sarif/CodeScanningRule.ts -------------------------------------------------------------------------------- /src/sarif/SarifDataTypes.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/sarif/SarifDataTypes.ts -------------------------------------------------------------------------------- /src/sarif/SarifReport.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/sarif/SarifReport.ts -------------------------------------------------------------------------------- /src/sarif/SarifReportFinder.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/sarif/SarifReportFinder.ts -------------------------------------------------------------------------------- /src/templating/ReportData.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/templating/ReportData.ts -------------------------------------------------------------------------------- /src/templating/ReportTypes.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/templating/ReportTypes.ts -------------------------------------------------------------------------------- /src/templating/Template.test.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/templating/Template.test.ts -------------------------------------------------------------------------------- /src/templating/Template.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/templating/Template.ts -------------------------------------------------------------------------------- /src/testUtils.ts: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/src/testUtils.ts -------------------------------------------------------------------------------- /summary_report_example.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/summary_report_example.png -------------------------------------------------------------------------------- /templates/executive_summary.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/templates/executive_summary.html -------------------------------------------------------------------------------- /templates/summary.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/templates/summary.html -------------------------------------------------------------------------------- /templates/summary_old.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/templates/summary_old.html -------------------------------------------------------------------------------- /templates/vulnerability.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/templates/vulnerability.html -------------------------------------------------------------------------------- /tsconfig.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/peter-murray/github-security-report-action/HEAD/tsconfig.json --------------------------------------------------------------------------------