SCP-79 Adds parameter 'with-dependencies'

scanoss · Jan 25, 2024 · e780700 · e780700
1 parent 286c3c9
commit e780700
Show file tree

Hide file tree

Showing 5 changed files with 11 additions and 5 deletions.
diff --git a/.github/workflows/test-action.yml b/.github/workflows/test-action.yml
@@ -26,6 +26,7 @@ jobs:
         uses: ./
         with:
 #          sbom-ignore: 'scanoss-ignore.json'
+           with-dependencies: true
            github-token: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Print stdout scan command

diff --git a/action.yml b/action.yml
@@ -28,6 +28,9 @@ inputs:
   api-url:
     description: 'SCANOSS API URL (optional - default: https://osskb.org/api/scan/direct)'
     required: false
+  with-dependencies:
+    description: Scan dependencies (optional - default false)
+    required: false
 
 # Define your outputs here.
 outputs:

diff --git a/dist/index.js b/dist/index.js
diff --git a/src/app.input.ts b/src/app.input.ts
@@ -6,3 +6,4 @@ export const SBOM_INDENTIFY = core.getInput('sbom-identify');
 export const SBOM_IGNORE = core.getInput('sbom-ignore');
 export const API_KEY = core.getInput('api-key');
 export const API_URL = core.getInput('api-url');
+export const WITH_DEPENDENCIES = core.getInput('with-dependencies');
diff --git a/src/services/scan.service.ts b/src/services/scan.service.ts
@@ -2,8 +2,8 @@ import * as input from '../app.input';
 
 export function commandBuilder(): string {
   return `docker run -v "${input.REPO_DIR}":"/scanoss" ghcr.io/scanoss/scanoss-py:v1.9.0 scan . 
-                --dependencies 
-                --output ${input.OUTPUT_PATH} 
+                --output ${input.OUTPUT_PATH}  
+                ${input.WITH_DEPENDENCIES ? `--dependencies` : ''}  
                 ${input.SBOM_INDENTIFY ? `--identify ${input.SBOM_INDENTIFY}` : ''} 
                 ${input.SBOM_IGNORE ? `--ignore ${input.SBOM_IGNORE}` : ''} 
                 ${input.API_URL ? `--apiurl ${input.API_URL}` : ''}