-
Notifications
You must be signed in to change notification settings - Fork 20
/
action.yml
52 lines (52 loc) · 2.15 KB
/
action.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
name: 'slither-action'
description: 'Runs Slither, the Solidity static analyzer.'
inputs:
solc-version:
description: 'The version of solc to use. Should be autodetected, but may be specified manually.'
node-version:
description: 'The version of node to use.'
target:
description: 'The path of the project that Slither should analyze, relative to the repo root.'
default: .
type: string
sarif:
description: 'If provided, the path of the SARIF file to produce, relative to the repo root.'
slither-args:
description: 'Extra arguments to pass to Slither.'
slither-config:
description: 'The path to the Slither configuration file. By default, `./slither.config.json` is used if present.'
slither-version:
description: 'The version of slither-analyzer to use. By default, the latest release in PyPI is used.'
slither-plugins:
description: 'A requirements.txt file to install alongside Slither. Useful to install custom plugins.'
ignore-compile:
description: 'Whether to ignore the compilation step when running crytic-compile and Slither.'
default: false
type: boolean
fail-on:
description: 'Cause the action to fail if Slither finds any findings of this severity or higher. By default it will fail if any finding is found'
default: all
type: string
internal-github-workspace:
# Do not set manually. This is a hacky way to pass the host workspace path to inside the action
# This is used to improve compatibility when using `ignore-compile`.
# GitHub rewrites the argument if it is passed directly, so we use toJSON to "transform"
# it and avoid the remapping done by GitHub Actions.
default: ${{ toJSON(github.workspace) }}
outputs:
sarif:
description: 'If produced, the path of the SARIF file, relative to the repo root.'
stdout:
description: 'Standard output from Slither. Works well when passing `--checklist` in slither-args.'
runs:
using: 'docker'
image: 'Dockerfile'
args:
- ${{ inputs.target }}
- ${{ inputs.solc-version }}
- ${{ inputs.node-version }}
- ${{ inputs.sarif }}
- ${{ inputs.slither-version }}
branding:
icon: 'shield'
color: 'red'