CloudBees action: Scan with Grype

1 minute read

Use this action to perform static application security testing (SAST) on code with Grype. Grype, an open-source scanning tool from Anchore, finds vulnerabilities in container images and filesystems.

All CloudBees action repositories are listed at CloudBees, Inc. on GitHub.

Inputs

Table 1. Input details
Input name Data type Required? Description

binary-tar-path

String

Yes

The path of the binary to be scanned.

The binary file must be in the TAR format.

Usage example

In your YAML file, add:

- name: Scan with Grype uses: cloudbees-io/grype-plugin@v1 with: binary-tar-path: /path/to/binary.tar