2019-12-08 19:17:13 +09:00
|
|
|
import * as core from '@actions/core'
|
2019-12-09 08:51:14 +09:00
|
|
|
import * as github from '@actions/github'
|
|
|
|
|
import stripAnsi from 'strip-ansi'
|
|
|
|
|
import Octokit, {IssuesCreateResponse} from '@octokit/rest'
|
2019-12-09 12:43:13 +09:00
|
|
|
import {Audit} from './audit'
|
2019-12-09 21:31:55 +09:00
|
|
|
import * as issue from '../src/issue'
|
|
|
|
|
import {IssueOption} from '../src/interface'
|
2019-12-08 19:17:13 +09:00
|
|
|
|
|
|
|
|
async function run(): Promise<void> {
|
|
|
|
|
try {
|
2019-12-09 12:43:13 +09:00
|
|
|
const audit = new Audit()
|
|
|
|
|
audit.run()
|
2019-12-08 19:17:13 +09:00
|
|
|
|
2019-12-09 12:43:13 +09:00
|
|
|
core.info(audit.stdout)
|
2019-12-08 22:10:35 +09:00
|
|
|
|
2019-12-09 12:43:13 +09:00
|
|
|
if (!audit.foundVulnerability()) {
|
2019-12-08 22:10:35 +09:00
|
|
|
// vulnerabilities are not found
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
core.debug('open an issue')
|
2019-12-09 08:51:14 +09:00
|
|
|
const token: string = core.getInput('token', {required: true})
|
|
|
|
|
const client: Octokit = new github.GitHub(token)
|
|
|
|
|
|
|
|
|
|
// remove control characters and create a code block
|
2019-12-09 12:43:13 +09:00
|
|
|
const issueBody = `\`\`\`\n${stripAnsi(audit.stdout)}\n\`\`\``
|
2019-12-09 21:31:55 +09:00
|
|
|
const option: IssueOption = issue.getIssueOption(issueBody)
|
2019-12-09 08:51:14 +09:00
|
|
|
const {
|
2019-12-09 21:31:55 +09:00
|
|
|
data: createdIssue
|
2019-12-09 08:51:14 +09:00
|
|
|
}: Octokit.Response<IssuesCreateResponse> = await client.issues.create({
|
|
|
|
|
...github.context.repo,
|
2019-12-09 21:31:55 +09:00
|
|
|
...option
|
2019-12-09 08:51:14 +09:00
|
|
|
})
|
2019-12-09 21:31:55 +09:00
|
|
|
core.debug(`#${createdIssue.number}`)
|
2019-12-08 19:17:13 +09:00
|
|
|
} catch (error) {
|
|
|
|
|
core.setFailed(error.message)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
run()
|
