OWASP dependency-check for codecommit repositories
Project description
@cloudcomponents/cdk-dependency-check
OWASP dependency-check for codecommit repositories
Install
TypeScript/JavaScript:
npm i @cloudcomponents/cdk-dependency-check
Python:
pip install cloudcomponents.cdk-dependency-check
How to use
import { Construct, Stack, StackProps } from '@aws-cdk/core';
import { Repository } from '@aws-cdk/aws-codecommit';
import { Schedule } from '@aws-cdk/aws-events';
import { SnsTopic } from '@aws-cdk/aws-events-targets';
import { Bucket } from '@aws-cdk/aws-s3';
import { Topic } from '@aws-cdk/aws-sns';
import { EmailSubscription } from '@aws-cdk/aws-sns-subscriptions';
import { CodeCommitDependencyCheck } from '@cloudcomponents/cdk-dependency-check';
export class DependencyCheckStack extends Stack {
constructor(scope: Construct, id: string, props?: StackProps) {
super(scope, id, props);
const repository = Repository.fromRepositoryName(
this,
'Repository',
process.env.REPOSITORY_NAME as string,
);
const reportsBucket = new Bucket(this, 'Bucket');
// The following example runs a task every day at 4am
const check = new CodeCommitDependencyCheck(
this,
'CodeCommitDependencyCheck',
{
repository,
reportsBucket,
preCheckCommand: 'npm i',
schedule: Schedule.cron({
minute: '0',
hour: '4',
}),
},
);
const checkTopic = new Topic(this, 'CheckTopic');
checkTopic.addSubscription(
new EmailSubscription(process.env.DEVSECOPS_TEAM_EMAIL as string),
);
check.onCheckStarted('started', {
target: new SnsTopic(checkTopic),
});
check.onCheckSucceeded('succeeded', {
target: new SnsTopic(checkTopic),
});
check.onCheckFailed('failed', {
target: new SnsTopic(checkTopic),
});
}
}
Upload HTML Reports
const reportsBucket = new Bucket(this, 'Bucket');
// The following example runs a task every day at 4am
const check = new CodeCommitDependencyCheck(this, 'CodeCommitDependencyCheck', {
repository,
reportsBucket,
preCheckCommand: 'npm i',
schedule: Schedule.cron({
minute: '0',
hour: '4',
}),
});
API Reference
See API.md.
Example
See more complete examples.
License
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for cloudcomponents.cdk-dependency-check-1.49.0.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | c8ce3a765f5999db4081e0bcf39e9e4543c9ad3d2a06b963545362b7528a2ee5 |
|
MD5 | bd4ba6ee436b8e718f3d8cadcaba2ff9 |
|
BLAKE2b-256 | f73657c0c989190d5b7a39c9428f30b8403fa5e65ac5fe5edec189727c3cc82d |
Close
Hashes for cloudcomponents.cdk_dependency_check-1.49.0-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 611a2798508556909a8af78ce4f0f89025723fc1feee6ce31c0fdb97641b6a8e |
|
MD5 | a71090be98caee896cbbca3afb03c84e |
|
BLAKE2b-256 | 95fd8914371b2ffab15e0bde5773d9c2f3b09f320c1f45e50d898efc4eaea66f |