You're viewing an older version of this GitHub Action. Do you want to see the latest version instead?
GitHub Action
AppSweep Mobile Application Security Testing
v1.0
This action can be used to automate scanning your Android application using a GitHub action
# This workflow will initiate a Guardsquare AppSweep scan of your APK
name: AppSweep mobile application security testing
on: [push]
jobs:
appsweep-scan:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@master
with:
repository: ''
- uses: guardsquare/appsweep-action@main
env:
APPSWEEP_API_KEY: ${{ secrets.APPSWEEP_API_KEY }}
INPUT_FILE: InsecureBankv2.apk| Input | Description |
|---|---|
APPSWEEP_API_KEY |
Project API key for your AppSweep project, should be stored using Github SECRETS |
INPUT_FILE |
The APK that will be uploaded to AppSweep |
MAPPING_FILE (optional) |
An optional obfuscation mapping file for the build |
LIBRARY_FILE (optional) |
An optional library mapping file for the build |
COMMIT_HASH (optional) |
An optional commit hash of the build |
TAGS (optional) |
An optional set of tags to append to your build |
This is how to use the optional input.
# This workflow will initiate a Guardsquare AppSweep scan of your APK
name: AppSweep mobile application security testing
on: [push]
jobs:
appsweep-scan:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@master
with:
repository: ''
- uses: guardsquare/appsweep-action@main
env:
APPSWEEP_API_KEY: ${{ secrets.APPSWEEP_API_KEY }}
INPUT_FILE: InsecureBankv2.apk
MAPPING_FILE: mapping.txt
LIBRARY_FILE:
COMMIT_HASH: ${{ steps.vars.outputs.sha_short }}
TAGS: release