Github action that fetches Github code-scanning alerts and report results as JSON.
First, you need to store your repositories read-only token in repo secrets as CODESCANALERTS_TOKEN.
jobs:
scan:
runs-on: ubuntu-latest
steps:
- uses: "MTES-MCT/codescanalerts-action@main"
with:
token: ${{ secrets.CODESCANALERTS_TOKEN }}
repositories: MTES-MCT/action-bidonvilles,MTES-MCT/partaj
output: codescanalerts.json
state: openTo test locally, install act. Put secrets CODESCANALERTS_TOKEN=*** in .secrets file.
Launch:
npm run all
act -j units # unit tests
act -j action # test Github action locally