This action retrieves a list of entrypoints from a specified project in the Bright Security platform.
Bright is a powerful dynamic application & API security testing (DAST) platform that security teams trust and developers love.
Scans any target, whether Web Apps, APIs (REST. & SOAP, GraphQL & more), Web sockets or mobile, providing actionable reports
Bright works with your existing CI/CD pipelines – trigger scans on every commit, pull request or build with unit testing.
One file. One command. One scan. No UI needed.
More information is available on Bright's:
Required. Your Bright API authorization token (key). You can generate it in the Organization section in the Bright app. Find more information here.
Optional. The hostname where your Bright app is deployed. Default is app.brightsec.com.
Required. The ID of the project from which to list entrypoints.
Optional. One or more connectivity statuses as a comma-separated list. Available values: ok, unreachable, problem, skipped, unauthorized, unavailable.
Optional. One or more security statuses as a comma-separated list. Available values: new, changed, tested, vulnerable.
Optional. Maximum number of entrypoints to retrieve. Default is 100.
Optional. If set to true, returns only an array of entrypoint IDs instead of full objects. Default is false.
The ID of the project from which entrypoints were retrieved.
A JSON-formatted list of entrypoints from the specified project.
steps:
- name: List Project Entrypoints
uses: NeuraLegion/list-entrypoints@v1
with:
api_token: ${{ secrets.BRIGHT_TOKEN }}
project_id: ${{ secrets.PROJECT_ID }}
limit: 50
connectivity: ok,unreachable
status: new,vulnerable
id: entrypoints
- name: Use Entrypoints
run: |
echo "Project ID: ${{ steps.entrypoints.outputs.projectId }}"
echo "Entrypoints: ${{ steps.entrypoints.outputs.entrypoints }}"