OWASP dependency-check for codecommit repositories
Project description
@cloudcomponents/cdk-dependency-check
OWASP dependency-check for codecommit repositories
Install
TypeScript/JavaScript:
npm i @cloudcomponents/cdk-dependency-check
Python:
pip install cloudcomponents.cdk-dependency-check
How to use
# Example automatically generated without compilation. See https://github.com/aws/jsii/issues/826
from aws_cdk.core import Construct, Stack, StackProps
from aws_cdk.aws_codecommit import Repository
from aws_cdk.aws_events import Schedule
from aws_cdk.aws_events_targets import SnsTopic
from aws_cdk.aws_s3 import Bucket
from aws_cdk.aws_sns import Topic
from aws_cdk.aws_sns_subscriptions import EmailSubscription
from cloudcomponents.cdk_dependency_check import CodeCommitDependencyCheck
class DependencyCheckStack(Stack):
def __init__(self, scope, id, *, description=None, env=None, stackName=None, tags=None, synthesizer=None, terminationProtection=None, analyticsReporting=None):
super().__init__(scope, id, description=description, env=env, stackName=stackName, tags=tags, synthesizer=synthesizer, terminationProtection=terminationProtection, analyticsReporting=analyticsReporting)
repository = Repository.from_repository_name(self, "Repository", process.env.REPOSITORY_NAME)
reports_bucket = Bucket(self, "Bucket")
# The following example runs a task every day at 4am
check = CodeCommitDependencyCheck(self, "CodeCommitDependencyCheck",
repository=repository,
reports_bucket=reports_bucket,
pre_check_command="npm i",
schedule=Schedule.cron(
minute="0",
hour="4"
)
)
check_topic = Topic(self, "CheckTopic")
check_topic.add_subscription(
EmailSubscription(process.env.DEVSECOPS_TEAM_EMAIL))
check.on_check_started("started",
target=SnsTopic(check_topic)
)
check.on_check_succeeded("succeeded",
target=SnsTopic(check_topic)
)
check.on_check_failed("failed",
target=SnsTopic(check_topic)
)
Upload HTML Reports
# Example automatically generated without compilation. See https://github.com/aws/jsii/issues/826
reports_bucket = Bucket(self, "Bucket")
# The following example runs a task every day at 4am
check = CodeCommitDependencyCheck(self, "CodeCommitDependencyCheck",
repository=repository,
reports_bucket=reports_bucket,
pre_check_command="npm i",
schedule=Schedule.cron(
minute="0",
hour="4"
)
)
API Reference
See API.md.
Example
See more complete examples.
License
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for cloudcomponents.cdk-dependency-check-1.1.1.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | 0e88b50e2fba07d26e640c9b252552adf138eecbff9d684eaa64c26bcd3d022a |
|
MD5 | bed2c6dccbb50f8e00f9bfd2a27d27c0 |
|
BLAKE2b-256 | 1c4dd9323a6afef0faa0d8b1ae3b8af7ff0fa0b468afa3b94916c387b0fae59a |
Close
Hashes for cloudcomponents.cdk_dependency_check-1.1.1-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | bce8680ef51f97f1a667b8b25852a2ad49578ba931127ed14649e7aee79e6d12 |
|
MD5 | 3fa256779a4fc0abadbd78e0921c21a1 |
|
BLAKE2b-256 | 42deb90025f1c4b8cff62e4e7f7a66556bfc87c169aeec913cec0c8d0c30e270 |