create a script that will pull all vulns and create a csv file from it #2
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # DISCLAIMER: This workflow file has been auto-generated and committed to the repo by the GitHub App from Contrast Security. | |
| # Manual edits to this file could cause the integration to produce unexpected behavior or break. | |
| # Version: 1.0.2 | |
| # Last updated: 2026-02-12T17:42:57.419881421Z | |
| name: Contrast Security SCA App Workflow | |
| on: | |
| workflow_dispatch: | |
| push: | |
| branches: | |
| - main | |
| pull_request: | |
| types: [opened, synchronize, reopened] | |
| branches: | |
| - main | |
| jobs: | |
| fingerprint_repo: | |
| if: ${{ github.actor != 'dependabot[bot]' }} | |
| runs-on: ubuntu-22.04 | |
| steps: | |
| - name: Clone repository | |
| uses: actions/checkout@v4 | |
| - name: Run Contrast SCA Fingerprint | |
| id: fingerprint | |
| uses: Contrast-Security-OSS/contrast-sca-action@v3 | |
| with: | |
| apiKey: ${{ secrets.CONTRAST_GITHUB_APP_API_KEY }} | |
| authHeader: ${{ secrets.CONTRAST_GITHUB_APP_AUTH_HEADER }} | |
| orgId: ${{ vars.CONTRAST_GITHUB_APP_ORG_ID }} | |
| apiUrl: ${{ vars.CONTRAST_GITHUB_APP_TS_URL }} | |
| repoUrl: ${{ github.server_url }}/${{ github.repository }} | |
| repoName: ${{ github.repository }} | |
| externalId: ${{ vars.CONTRAST_GITHUB_APP_ID }} | |
| command: fingerprint | |
| outputs: | |
| fingerprint: ${{ steps.fingerprint.outputs.fingerprint }} | |
| analyze_dependencies: | |
| if: ${{ needs.fingerprint_repo.outputs.fingerprint != '' }} | |
| needs: fingerprint_repo | |
| runs-on: ubuntu-22.04 | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| manifest: | |
| - ${{ fromJson(needs.fingerprint_repo.outputs.fingerprint) }} | |
| steps: | |
| - name: Clone repository | |
| uses: actions/checkout@v4 | |
| - name: Run Contrast SCA Audit | |
| uses: Contrast-Security-OSS/contrast-sca-action@v3 | |
| with: | |
| apiKey: ${{ secrets.CONTRAST_GITHUB_APP_API_KEY }} | |
| authHeader: ${{ secrets.CONTRAST_GITHUB_APP_AUTH_HEADER }} | |
| orgId: ${{ vars.CONTRAST_GITHUB_APP_ORG_ID }} | |
| apiUrl: ${{ vars.CONTRAST_GITHUB_APP_TS_URL }} | |
| filePath: ${{ matrix.manifest.filePath }} | |
| repositoryId: ${{ matrix.manifest.repositoryId }} | |
| projectGroupId: ${{ matrix.manifest.projectGroupId }} |