File tree 2 files changed +8
-10
lines changed
2 files changed +8
-10
lines changed Original file line number Diff line number Diff line change @@ -26,13 +26,11 @@ jobs:
2626
2727 - name : compile intercept
2828 run : |
29- make build && cp release/intercept playground/intercept
29+ make build && cp release/intercept .
3030
31- name : Run your analysis tool
31+ name : Run intercept tool
3232 run : |
33- cd playground/
34- ./intercept audit --policy policies/nginx_insecure.yaml --target targets/ -vvvv
35-
33+ ./intercept audit --policy playground/policies/nginx_insecure.yaml --target playground/targets/ -vvvv
3634
3735name : Find SARIF file
3836 id : find-sarif
Original file line number Diff line number Diff line change 11Policies :
2- - id : " SCAN-001 Server Tokens"
2+ - id : " I SCAN-001 Server Tokens"
33 type : " scan"
44 filepattern : " nginx.conf"
55 enforcement :
@@ -19,7 +19,7 @@ Policies:
1919 _regex :
2020 - " server_tokens\\ s+on;"
2121
22- - id : " SCAN-002 SSL Protocols"
22+ - id : " I SCAN-002 SSL Protocols"
2323 type : " scan"
2424 filepattern : " nginx.conf"
2525 enforcement :
@@ -85,7 +85,7 @@ Policies:
8585 # _regex:
8686 # - "^(?!.*ssl_certificate|ssl_certificate_key)"
8787
88- - id : " SCAN-005 Weak SSL Ciphers"
88+ - id : " I SCAN-005 Weak SSL Ciphers"
8989 type : " scan"
9090 filepattern : " nginx.conf"
9191 enforcement :
@@ -127,7 +127,7 @@ Policies:
127127 # - "listen\\s+80;"
128128 # - "server\\s*\\{[^\\{]*listen\\s+80[^\\{]*[^#]\\breturn\\s+301\\b.*https;"
129129
130- - id : " SCAN-007 Access Logs Disabled"
130+ - id : " I SCAN-007 Access Logs Disabled"
131131 type : " scan"
132132 filepattern : " nginx.conf"
133133 enforcement :
@@ -167,7 +167,7 @@ Policies:
167167 _regex :
168168 - " autoindex\\ s+on;"
169169
170- - id : " SCAN-009 Large Buffer Size"
170+ - id : " I SCAN-009 Large Buffer Size"
171171 type : " scan"
172172 filepattern : " nginx.conf"
173173 enforcement :
You can’t perform that action at this time.
0 commit comments