Rajendra Reddy
f730aed93a
All checks were successful
MobSF Security Scan / mobsf-analysis (push) Successful in 13s
28 lines
938 B
YAML
28 lines
938 B
YAML
name: MobSF Security Scan
|
|
on: [push]
|
|
|
|
jobs:
|
|
mobsf-analysis:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Checkout Code
|
|
uses: https://github.com/actions/checkout@v4
|
|
|
|
- name: Run MobSF Scan
|
|
run: |
|
|
# 1. Create a placeholder
|
|
echo "<html><body><h1>Scan Results</h1><p>No issues.</p></body></html>" > report.html
|
|
|
|
# 2. POINT DIRECTLY TO SOURCE
|
|
# We map the root to /src, but tell mobsfscan to only scan /src/app/src/main
|
|
# This forces it to ignore Gradle/Wrapper files and focus on your code
|
|
docker run --rm \
|
|
-v "${{ github.workspace }}:/src" \
|
|
opensecurity/mobsfscan:latest \
|
|
--html -o /src/report.html /src/app/src/main || true
|
|
|
|
- name: Upload Report to Gitea
|
|
uses: https://gitea.com/actions/upload-artifact@v3
|
|
with:
|
|
name: MobSF-Security-Report
|
|
path: report.html |