OWASP dependency-check for codecommit repositories
Project description
@cloudcomponents/cdk-dependency-check
OWASP dependency-check for codecommit repositories
Install
TypeScript/JavaScript:
npm i @cloudcomponents/cdk-dependency-check
Python:
pip install cloudcomponents.cdk-dependency-check
How to use
import { Construct, Stack, StackProps } from '@aws-cdk/core';
import { Repository } from '@aws-cdk/aws-codecommit';
import { Schedule } from '@aws-cdk/aws-events';
import { SnsTopic } from '@aws-cdk/aws-events-targets';
import { Bucket } from '@aws-cdk/aws-s3';
import { Topic } from '@aws-cdk/aws-sns';
import { EmailSubscription } from '@aws-cdk/aws-sns-subscriptions';
import { CodeCommitDependencyCheck } from '@cloudcomponents/cdk-dependency-check';
export class DependencyCheckStack extends Stack {
constructor(scope: Construct, id: string, props?: StackProps) {
super(scope, id, props);
const repository = Repository.fromRepositoryName(
this,
'Repository',
process.env.REPOSITORY_NAME as string,
);
const reportsBucket = new Bucket(this, 'Bucket');
// The following example runs a task every day at 4am
const check = new CodeCommitDependencyCheck(
this,
'CodeCommitDependencyCheck',
{
repository,
reportsBucket,
preCheckCommand: 'npm i',
schedule: Schedule.cron({
minute: '0',
hour: '4',
}),
},
);
const checkTopic = new Topic(this, 'CheckTopic');
checkTopic.addSubscription(
new EmailSubscription(process.env.DEVSECOPS_TEAM_EMAIL as string),
);
check.onCheckStarted('started', {
target: new SnsTopic(checkTopic),
});
check.onCheckSucceeded('succeeded', {
target: new SnsTopic(checkTopic),
});
check.onCheckFailed('failed', {
target: new SnsTopic(checkTopic),
});
}
}
Upload HTML Reports
const reportsBucket = new Bucket(this, 'Bucket');
// The following example runs a task every day at 4am
const check = new CodeCommitDependencyCheck(this, 'CodeCommitDependencyCheck', {
repository,
reportsBucket,
preCheckCommand: 'npm i',
schedule: Schedule.cron({
minute: '0',
hour: '4',
}),
});
API Reference
See API.md.
Example
See more complete examples.
License
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for cloudcomponents.cdk-dependency-check-1.48.0.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | 26a09eb245dc93e423354f78bd2cbb18691c1a5004f431683c2da71a7e2bc15c |
|
MD5 | c54cbf71ecf3ce7946f2458b159dd772 |
|
BLAKE2b-256 | e1443681299225d0bb0b06f8794d6d8c2e682ab08299b1de0797bc45d1afa133 |
Close
Hashes for cloudcomponents.cdk_dependency_check-1.48.0-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 54ef407712b7b074d9a9f07a438d4f060661ea59bff30e38dda74e0bff7b0dcb |
|
MD5 | ce4a0e6e2dd844fb9d6a5f52f32a31c1 |
|
BLAKE2b-256 | d5346bd24e0452667615675cf19e2b552281a4017ff57969d47608f2f5861858 |