Merge pull request #7 from Contrast-Security-OSS/PRODSEC-475

Prodsec 475 - Logs

Author: DavidMContrast

lib/index.js

@@ -39050,9 +39050,12 @@ function run(context) {
             actionPolicyList.forEach((item) => {
                 console.log(item.toString());
             });
+            console.log("\nREADING WORKFLOW FILES");
             workflowFilePaths.forEach((wf) => {
+                console.log(line);
                 let workflow = { filePath: wf, actions: Array() };
                 workflowFiles.push(workflow);
+                console.log("\nReading:" + workflow.filePath);
                 try {
                     let yaml = js_yaml_1.default.load(fs_1.default.readFileSync(workflow.filePath, "utf-8"));
                     let actionStrings = getPropertyValues(yaml, "uses");
@@ -39103,12 +39106,12 @@ function run(context) {
                     actionViolations.push(violation);
                 }
                 else {
-                    console.log("\nNo violations detected");
+                    console.log("\n ✅ No violations detected");
                 }
             });
             if (actionViolations.length > 0) {
                 core.setOutput("violations", actionViolations);
-                console.log("\n!!! ACTION POLICY VIOLATIONS DETECTED !!!");
+                console.log("\n ❌ ACTION POLICY VIOLATIONS DETECTED ❌");
                 console.log(line);
                 actionViolations.forEach((workflow) => {
                     console.log(`Workflow: ${workflow.filePath}`);
@@ -39118,11 +39121,11 @@ function run(context) {
                     console.log();
                 });
                 if (failIfViolations) {
-                    core.setFailed("!!! ACTION POLICY VIOLATIONS DETECTED !!!");
+                    core.setFailed(" ❌ ACTION POLICY VIOLATIONS DETECTED ❌");
                 }
             }
             else {
-                console.log("\nAll workflow files contain actions that conform to the policy provided.");
+                console.log("\n ✅ All workflow files contain actions that conform to the policy provided.");
             }
         }
         catch (error) {

package.json

@@ -1,6 +1,6 @@
 {
   "name": "actionbot",
-  "version": "1.0.4",
+  "version": "1.0.5",
   "private": true,
   "description": "Github Action Policy Checker as a Github Action",
   "main": "lib/index.js",

src/main.ts

@@ -202,10 +202,12 @@ async function run(context: typeof github.context): Promise<void> {
       console.log(item.toString());
     });
 
+    console.log("\nREADING WORKFLOW FILES");
     workflowFilePaths.forEach((wf) => {
+      console.log(line);
       let workflow: Workflow = { filePath: wf, actions: Array<Action>() };
       workflowFiles.push(workflow);
-
+      console.log("\nReading:" + workflow.filePath);
       try {
         let yaml: any = yamlParse.load(
           fs.readFileSync(workflow.filePath, "utf-8"),
@@ -265,13 +267,13 @@ async function run(context: typeof github.context): Promise<void> {
       if (violation.actions.length > 0) {
         actionViolations.push(violation);
       } else {
-        console.log("\nNo violations detected");
+        console.log("\n ✅ No violations detected");
       }
     });
 
     if (actionViolations.length > 0) {
       core.setOutput("violations", actionViolations);
-      console.log("\n!!! ACTION POLICY VIOLATIONS DETECTED !!!");
+      console.log("\n ❌ ACTION POLICY VIOLATIONS DETECTED ❌");
       console.log(line);
 
       actionViolations.forEach((workflow) => {
@@ -285,11 +287,11 @@ async function run(context: typeof github.context): Promise<void> {
       });
 
       if (failIfViolations) {
-        core.setFailed("!!! ACTION POLICY VIOLATIONS DETECTED !!!");
+        core.setFailed(" ❌ ACTION POLICY VIOLATIONS DETECTED ❌");
       }
     } else {
       console.log(
-        "\nAll workflow files contain actions that conform to the policy provided.",
+        "\n ✅ All workflow files contain actions that conform to the policy provided.",
       );
     }
   } catch (error: unknown) {