Skip to content
/ bwe-firmware-scan-to-github Public

Repo for demoing pushing Binwalk Enterprise firmware analysis results to GitHub

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ochimo/bwe-firmware-scan-to-github

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
.github/workflows
.github/workflows
 
 
README.md
README.md
 
 
results.sarif
results.sarif
 
 
sarif-policy.yml
sarif-policy.yml
 
 

Repository files navigation

Binwalk Enterprise GitHub Code Scanning Demo

Repository to use for demoing integration of Binwalk Enterprise firmware image analysis with GitHub code scanning results.

This repository is configured to use the upload-sarif.yml action to parse a results.sarif file into Code Scanning alerts when results.sarif is pushed to the repository.

To generate results.sarif, use the Binwalk Enterprise "Centrifuge CLI" to check a firmware image analysis against a security policy. You can learn more here:

For example:

centrifuge --outfmt sarif report --ufid=[REPORT ID] check-policy --policy-yaml sarif-policy.yml --report-url [REPORT URL] > results.sarif
git commit -am "Scan results"
git push

About

Repo for demoing pushing Binwalk Enterprise firmware analysis results to GitHub

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published