CloudBees action: Scan with njsscan

1 minute read

Use this action to perform static application security testing (SAST) on Node.js code with njsscan, a semantic-aware scanner.

All CloudBees action repositories are listed at CloudBees, Inc. on GitHub.

Inputs

Table 1. Input details
Input name Data type Required? Description

workspace-dir

String

No

The path of the code to be scanned.

Usage example

In your YAML file, add:

- name: Scan with njsscan SAST scanner uses: cloudbees-io/njsscan-hybrid-plugin@v1