@@ -55,6 +55,7 @@ Customize the scan with additional options:
5555 include_paths : ' src/,lib/'
5656 exclude_paths : ' test/,docs/'
5757 scan_timeout : ' 600'
58+ scanners : ' sast,sca,secrets'
5859` ` `
5960
6061## Inputs
@@ -66,6 +67,38 @@ Customize the scan with additional options:
6667| `include_paths` | Comma-separated paths to include in scan | No | `''` (all files) |
6768| `exclude_paths` | Comma-separated paths to exclude from scan | No | `''` (none) |
6869| `scan_timeout` | Scan timeout in seconds | No | `300` |
70+ | `scanners` | Security scanners to run | No | `sast,sca` |
71+
72+ # # Scanner Options
73+
74+ The `scanners` parameter allows you to customize which security scanners run during analysis :
75+
76+ - **`sast`** - Static Application Security Testing (code vulnerabilities)
77+ - **`sca`** - Software Composition Analysis (dependency vulnerabilities)
78+ - **`secrets`** - Secret detection (API keys, passwords, tokens)
79+ - **`antipatterns`** - Code quality and duplicate code detection
80+ - **`iac`** - Infrastructure as Code security (Terraform, CloudFormation, etc.)
81+ - **`all`** - Run all available scanners
82+
83+ **Default:** If not specified, runs `sast,sca`
84+
85+ # ## Scanner Examples
86+
87+ Run all scanners :
88+ ` ` ` yaml
89+ - uses: CodeAnt-AI/[email protected] 90+ with:
91+ access_token: ${{ secrets.ACCESS_TOKEN_GITHUB }}
92+ scanners: 'all'
93+ ` ` `
94+
95+ Run specific scanners :
96+ ` ` ` yaml
97+ - uses: CodeAnt-AI/[email protected] 98+ with:
99+ access_token: ${{ secrets.ACCESS_TOKEN_GITHUB }}
100+ scanners: 'sast,secrets,iac'
101+ ` ` `
69102
70103# # Setup
71104
0 commit comments