OWASP dependency-check for codecommit repositories
Project description
@cloudcomponents/cdk-dependency-check
OWASP dependency-check for codecommit repositories
Install
TypeScript/JavaScript:
npm i @cloudcomponents/cdk-dependency-check
Python:
pip install cloudcomponents.cdk-dependency-check
How to use
# Example automatically generated without compilation. See https://github.com/aws/jsii/issues/826
from aws_cdk.core import Construct, Stack, StackProps
from aws_cdk.aws_codecommit import Repository
from aws_cdk.aws_events import Schedule
from aws_cdk.aws_events_targets import SnsTopic
from aws_cdk.aws_s3 import Bucket
from aws_cdk.aws_sns import Topic
from aws_cdk.aws_sns_subscriptions import EmailSubscription
from cloudcomponents.cdk_dependency_check import CodeCommitDependencyCheck
class DependencyCheckStack(Stack):
def __init__(self, scope, id, *, description=None, env=None, stackName=None, tags=None, synthesizer=None, terminationProtection=None, analyticsReporting=None):
super().__init__(scope, id, description=description, env=env, stackName=stackName, tags=tags, synthesizer=synthesizer, terminationProtection=terminationProtection, analyticsReporting=analyticsReporting)
repository = Repository.from_repository_name(self, "Repository", process.env.REPOSITORY_NAME)
reports_bucket = Bucket(self, "Bucket")
# The following example runs a task every day at 4am
check = CodeCommitDependencyCheck(self, "CodeCommitDependencyCheck",
repository=repository,
reports_bucket=reports_bucket,
pre_check_command="npm i",
schedule=Schedule.cron(
minute="0",
hour="4"
)
)
check_topic = Topic(self, "CheckTopic")
check_topic.add_subscription(
EmailSubscription(process.env.DEVSECOPS_TEAM_EMAIL))
check.on_check_started("started",
target=SnsTopic(check_topic)
)
check.on_check_succeeded("succeeded",
target=SnsTopic(check_topic)
)
check.on_check_failed("failed",
target=SnsTopic(check_topic)
)
Upload HTML Reports
# Example automatically generated without compilation. See https://github.com/aws/jsii/issues/826
reports_bucket = Bucket(self, "Bucket")
# The following example runs a task every day at 4am
check = CodeCommitDependencyCheck(self, "CodeCommitDependencyCheck",
repository=repository,
reports_bucket=reports_bucket,
pre_check_command="npm i",
schedule=Schedule.cron(
minute="0",
hour="4"
)
)
API Reference
See API.md.
Example
See more complete examples.
License
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for cloudcomponents.cdk-dependency-check-1.1.0.tar.gz
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 5db61fdd57f0140d1e489b6637621c29e2bcef7ec8d96e931288ccac37d50d8e |
|
| MD5 | 89e43ac65dbce9de08778afe7dc2511a |
|
| BLAKE2b-256 | 431f68a2c66778a32cf4e4aba610396fdae3001026009491ec5124d4f7ed06d0 |
Close
Hashes for cloudcomponents.cdk_dependency_check-1.1.0-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 50623e982a74604e649b8c9ac7b495fab1edb645c68bbfd08713d04e3754d62e |
|
| MD5 | 167ffae53f5e3fc67bd05fbf789d7fab |
|
| BLAKE2b-256 | c680a8be44e2577aa4ae4c65d2dc54494c192a3867924779bf6dc44b0c415df9 |
