Add .gitea/workflows/mobsf.yml
Some checks failed
MobSF Security Scanning / mobsf-analysis (push) Failing after 37s
Some checks failed
MobSF Security Scanning / mobsf-analysis (push) Failing after 37s
This commit is contained in:
35
.gitea/workflows/mobsf.yml
Normal file
35
.gitea/workflows/mobsf.yml
Normal file
@@ -0,0 +1,35 @@
|
||||
name: MobSF Security Scanning
|
||||
on:
|
||||
push:
|
||||
branches: [ main, master ]
|
||||
pull_request:
|
||||
|
||||
jobs:
|
||||
mobsf-analysis:
|
||||
runs-on: ubuntu-latest
|
||||
steps:
|
||||
# 1. Pull the code from your Gitea repository into the runner workspace
|
||||
- name: Checkout Code
|
||||
uses: https://github.com/actions/checkout@v4
|
||||
|
||||
# 2. (Optional) Verification step to see where your code is
|
||||
- name: Verify Workspace
|
||||
run: |
|
||||
echo "Current Path: $(pwd)"
|
||||
ls -F
|
||||
|
||||
# 3. Run MobSF Static Analysis
|
||||
# This will automatically detect Flutter, React Native, and Swift files
|
||||
- name: MobSF Scan
|
||||
uses: https://github.com/MobSF/mobsfscan@main
|
||||
with:
|
||||
# '.' tells MobSF to scan the code checked out in step 1
|
||||
args: '. --html --output report.html || true'
|
||||
|
||||
# 4. Upload the result to Gitea using the link you provided
|
||||
- name: Upload Report to Gitea
|
||||
uses: https://gitea.com/actions/upload-artifact@v3
|
||||
with:
|
||||
name: Security-Analysis-Report
|
||||
path: report.html
|
||||
retention-days: 5
|
||||
Reference in New Issue
Block a user