CloudBees action: Scan with Snyk SAST

Use this action to scan a Git repository with the Snyk static application security testing (SAST) scanner, which detects security flaws and provides suggested code fixes.

All CloudBees action repositories are listed at CloudBees, Inc. on GitHub.

Inputs

Table 1. Input details
Input name	Data type	Required?	Description
`orgname`	String	Yes	The Snyk organization name.
`token`	String	Yes	The Snyk client secret.
`language`	String	No	The language of your Git repository code base. Refer to Supported languages.

Supported languages

Table 2. Supported languages with inputs
Supported language	Input format
C	`LANGUAGE_C`
C+	`LANGUAGE_C+`
C#	`LANGUAGE_C#`
Go	`LANGUAGE_GO`
Java	`LANGUAGE_JAVA`
JavaScript	`LANGUAGE_JS`
PHP	`LANGUAGE_PHP`
Python	`LANGUAGE_PYTHON`
Ruby	`LANGUAGE_RUBY`
TypeScript	`LANGUAGE_TYPESCRIPT`

Usage example

In your YAML file, add:

      - name: Scan with Snyk SAST
        uses: cloudbees-io/snyk-sast-scan-code@v1
        with:
          orgname: "snyk_username"
          token: ${{ secrets.SNYK_SECRET }}
          language: "LANGUAGE_JS"▼